Job Description
SOC / Nework Security Operations Engineer
Key Roles & Responsibilities:
Incident Handling & Analysis
Handle L2 escalations from SOC L1 analysts for Fortinet and Arista-related security alerts.
Perform deep-dive analysis of security incidents such as intrusions, malware, ransomware, DDoS, and policy violations.
Lead incident containment, eradication, and recovery activities as per SOC processes.
Security Operations & Monitoring
Monitor, analyze, and correlate events from FortiSIEM, FortiAnalyzer, FortiGate , and Arista network/security telemetry.
Ensure adherence to SLAs for incident response (MTTD / MTTR).
Act as point of contact during major security incidents.
Tool Configuration & Tuning
Fine-tune Fortinet firewall policies, IPS/IDS signatures, and security profiles.
Optimize SIEM correlation rules and reduce false positives.
Support onboarding of new devices, log sources, and integrations into SOC tools.
Root Cause Analysis & Reporting
Key Roles & Responsibilities:
Incident Handling & Analysis
Handle L2 escalations from SOC L1 analysts for Fortinet and Arista-related security alerts.
Perform deep-dive analysis of security incidents such as intrusions, malware, ransomware, DDoS, and policy violations.
Lead incident containment, eradication, and recovery activities as per SOC processes.
Security Operations & Monitoring
Monitor, analyze, and correlate events from FortiSIEM, FortiAnalyzer, FortiGate , and Arista network/security telemetry.
Ensure adherence to SLAs for incident response (MTTD / MTTR).
Act as point of contact during major security incidents.
Tool Configuration & Tuning
Fine-tune Fortinet firewall policies, IPS/IDS signatures, and security profiles.
Optimize SIEM correlation rules and reduce false positives.
Support onboarding of new devices, log sources, and integrations into SOC tools.
Root Cause Analysis & Reporting