Back to Jobs
Managed Services Analyst, MXDR
Actively Reviewing
Check Point Software
Job Description
Why Join Us?
As the Check Point MXDR Services Analyst 2 within our Check Point Services (CPS) Managed eXtended Detection and Response (MXDR) Team at Check Point, you will assume a pivotal role in safeguarding our customer's digital assets, sensitive data, and critical systems against cyber threats and attacks. Leveraging your expertise in vulnerability identification, robust security implementation, and incident response, you will significantly enhance our customer's overall security posture. Collaborating closely with cross-functional teams, you will assess risks, formulate effective security strategies, and ensure adherence to industry standards and regulatory requirements.
Your strong technical acumen and analytical mindset will be instrumental in the prompt detection and mitigation of security breaches, as well as the proactive anticipation and mitigation of potential threats. Staying at the forefront of emerging cyber threats and trends, you will bolster the customer's defenses, maintaining a resilient and secure IT environment. This role is ideal for a self driven professional, that is passionate about cloud security, well versed in major public cloud platforms, and adept at utilizing state of the art tools to monitor security across cutting edge offerings. By directly supporting top tier companies across the United States, you will be at the forefront of cybersecurity innovation and excellence.
Location: Bangalore
Work Week: Saturday - Wednesday
Shift Timings: 8 am - 5 pm
Key Responsibilities
What are we looking for
Work Week: Saturday - Wednesday
Shift Timings: 8 am - 5 pm
As the Check Point MXDR Services Analyst 2 within our Check Point Services (CPS) Managed eXtended Detection and Response (MXDR) Team at Check Point, you will assume a pivotal role in safeguarding our customer's digital assets, sensitive data, and critical systems against cyber threats and attacks. Leveraging your expertise in vulnerability identification, robust security implementation, and incident response, you will significantly enhance our customer's overall security posture. Collaborating closely with cross-functional teams, you will assess risks, formulate effective security strategies, and ensure adherence to industry standards and regulatory requirements.
Your strong technical acumen and analytical mindset will be instrumental in the prompt detection and mitigation of security breaches, as well as the proactive anticipation and mitigation of potential threats. Staying at the forefront of emerging cyber threats and trends, you will bolster the customer's defenses, maintaining a resilient and secure IT environment. This role is ideal for a self driven professional, that is passionate about cloud security, well versed in major public cloud platforms, and adept at utilizing state of the art tools to monitor security across cutting edge offerings. By directly supporting top tier companies across the United States, you will be at the forefront of cybersecurity innovation and excellence.
Location: Bangalore
Work Week: Saturday - Wednesday
Shift Timings: 8 am - 5 pm
Key Responsibilities
- Perform vigilant monitoring across various security dimensions, including intrusion detection, file integrity, endpoint protection, log management, and SIEM solutions.
- Leverage expertise in cutting edge XDR solutions, such as Microsoft Sentinel, Microsoft Defender for Endpoint, Check Point Harmony Endpoint, and other solutions.
- Navigate cloud environments, particularly Azure, to ensure comprehensive security coverage.
- Skillfully analyze security events using log data and open-source intelligence to distinguish between legitimate and false-positive incidents.
- Maintain meticulous records of security monitoring activities through efficient case management and ticketing technologies.
- Contribute to the development, implementation, and maintenance of environment-specific rules, alerts, and dashboards within SIEM tools using custom queries.
- Collaborate with clients to tailor and configure SIEM tools, aligning them with specific security and compliance requirements.
- Effectively communicate security alerts to team members and clients regarding anomalies within the environment.
- Apply technical writing prowess to craft formal documentation, including analytical reports and briefings.
- Create and uphold a repository of standard operating procedures, technical documents, training materials, and troubleshooting guidelines for various security solutions.
- Participate in on-call rotations to provide support beyond regular business hours, catering to client operational needs.
- Conduct comprehensive data reviews to evaluate the efficacy of existing security and operational measures.
- Assist in the administration and maintenance of SIEM, Log Management, and Data Analytical Platforms.
- Address customer-initiated requests, such as Log Source configuration, Data Parsing, Use Case Development, and the resolution of complex issues related to managed security services.
- Innovate by developing technical solutions that automate repetitive tasks, enhancing operational efficiency.
- Provide leadership, guidance, and instruction to Junior SOC analysts, fostering a collaborative team environment.
- Manage ticketing processes, including ticket creation, follow-up, and resolution, ensuring timely customer support.
- Employ a combination of tools and analytical skills to investigate and identify the root causes of issues across various technologies.
- Proactively monitor and provide near-real-time updates on the cyber security status, facilitating swift responses to emerging threats and incidents.
- Conduct comprehensive data reviews to evaluate the efficacy of existing security and operational measures.
- Assist in the administration and maintenance of SIEM, Log Management, and Data Analytical Platforms.
- Innovate by developing technical solutions that automate repetitive tasks, enhancing operational efficiency.
- Manage ticketing processes, including ticket creation, follow-up, and resolution, ensuring timely customer support.
- Proactively monitor and provide near-real-time updates on the cyber security status, facilitating swift responses to emerging threats and incidents.
What are we looking for
- Upbeat and positive attitude Strong analytical and troubleshooting skills Excellent written and verbal communication skills
- Team player
- Prior experience performing as a SOC analyst
- Working knowledge of SIEM solutions and incident management solutions
- Technical understanding of core cybersecurity technologies as well as emerging capabilities.
- Inquisitive, problem-solving oriented
- 3+ years of prior relevant experience.
- Experience:
- SOC: 3+ years (Preferred)
- Cybersecurity: 4+ years (Preferred)
- SIEM: 1+ years (Preferred) (Splunk or Sentinel)
- Vulnerability Management
- Threat Hunting
- Prior SIEM experience (Working Knowledge)
- Tuning
- Alert triage
- Detection Engineering
- Programming/Scripting in one language (PowerShell / Python / Bash)
- One Cyber Security certification (Microsoft SC-900, SC-200, SC-100, Security+, CySA+, CEH, etc)
- Working knowledge of Operating Systems
- Fundamental Networking knowledge
- Advanced certifications in the field of cybersecurity, such as Certified Information Systems Security Professional (CISSP) or Certified Information Security Manager (CISM), will be highly regarded.
- Familiarity with threat hunting techniques and the ability to proactively seek out security threats and vulnerabilities.
- Experience with threat modeling and risk assessment methodologies to enhance security strategies.
- Proficiency in scripting or programming languages, such as Python or PowerShell, for automation and customization of security solutions.
- Knowledge of container security, Kubernetes, and cloud-native security best practices.
- Familiarity with security orchestration and automation tools.
- Understanding of identity and access management (IAM) principles and technologies.
- Experience with network security monitoring tools and protocols, including Snort, Suricata, and Bro/Zeek.
- Active involvement in cybersecurity community activities, such as presenting at conferences, contributing to open-source projects, or participating in Capture The Flag (CTF) competitions.
- Strong analytical and problem-solving skills, with the ability to analyze complex security issues and propose effective solutions.
- Knowledge of emerging cybersecurity trends, threats, and mitigation strategies to stay ahead of evolving risks.
- Excellent interpersonal and communication skills, including the ability to convey technical information to non-technical stakeholders effectively.
Work Week: Saturday - Wednesday
Shift Timings: 8 am - 5 pm
Required Skills
Similar Jobs
View all →
SOC Engineer (L3)
Larsen & Toubro-Vyoma
Chennai
Python
PowerShell
XDR
+5
DevOps Engineer
raisin Software
Release management
Capacity Planning
Log management
+20
Cyber Security Engineer
Nuvei
Compliance frameworks
ISO 27001
Adobe Illustrator
+12
Senior Cybersecurity Engineer
Lumiere Systems
Event-driven architecture
Log management
Python
+9
SOC Analyst - L3
Ishan Technologies
Ahmedabad
ISO 27001
Root Cause Analysis
Python
+7
Share
Quick Apply
Upload your resume to apply for this position
–