More jobs:
Job Description & How to Apply Below
Key
Roles & Responsibilities :
Incident Handling & Analysis
Handle L2 escalations from SOC L1 analysts for Fortinet and Arista-related security alerts.
Perform deep-dive analysis of security incidents such as intrusions, malware, ransomware, DDoS, and policy violations.
Lead incident containment, eradication, and recovery activities as per SOC processes.
Security Operations & Monitoring
Monitor, analyze, and correlate events from Forti
SIEM, Forti Analyzer, Forti Gate , and Arista network/security telemetry.
Ensure adherence to SLAs for incident response (MTTD / MTTR).
Act as point of contact during major security incidents.
Tool Configuration & Tuning
Fine-tune Fortinet firewall policies, IPS/IDS signatures, and security profiles.
Optimize SIEM correlation rules and reduce false positives.
Support onboarding of new devices, log sources, and integrations into SOC tools.
Root Cause Analysis & Reporting
Perform Root Cause Analysis (RCA) for security incidents.
Prepare detailed incident reports and recommendations for preventive controls.
Contribute to SOC dashboards, metrics, and management reports.
Process & Knowledge Improvement
Update SOPs, runbooks, and incident response playbooks.
Guide and mentor L1 SOC analysts.
Participate in security drills, audits, and compliance activities.
Coordination & Escalation
Coordinate with network, system, and application teams for incident resolution.
Escalate critical incidents to SOC Manager / customer stakeholders when required.
Required Technical Skills
Strong hands-on experience with Fortinet solutions :
Forti Gate (Firewall, VPN, IPS/IDS)
FortiSIEM
Forti Analyzer
Working knowledge of Arista switches and network telemetry .
Good understanding of:
TCP/IP, routing, switching, firewalls
Network & endpoint security concepts
SIEM, log analysis, and threat detection
Experience with security frameworks and best practices.
Qualifications & Experience
4–7 years of experience in SOC / Network Security operations.
Bachelor’s degree in IT, Computer Science, or related field.
Fortinet certifications (NSE 4 / NSE 5 / NSE
6)/ GCIA /GCIH /CySA+ )– preferred .
Experience in 24x7 SOC environments and shift operations.
Strong communication, documentation, and analytical skills.
Note that applications are not being accepted from your jurisdiction for this job currently via this jobsite. Candidate preferences are the decision of the Employer or Recruiting Agent, and are controlled by them alone.
To Search, View & Apply for jobs on this site that accept applications from your location or country, tap here to make a Search:
To Search, View & Apply for jobs on this site that accept applications from your location or country, tap here to make a Search:
Search for further Jobs Here:
×