Senior Security Operations Analyst

About Commvault 

Commvault (NASDAQ: CVLT) is the gold standard in cyber resilience. The company empowers customers to uncover, take action, and rapidly recover from cyberattacks – keeping data safe and businesses resilient. The company’s unique AI-powered platform combines best-in-class data protection, exceptional data security, advanced data intelligence, and lightning-fast recovery across any workload or cloud at the lowest TCO. For over 25 years, more than 100,000 organizations and a vast partner ecosystem have relied on Commvault to reduce risks, improve governance, and do more with data. 

The Opportunity

We have an outstanding career opportunity for a Senior Security Operations Analyst located in Bangalore, India. This individual will be part of the people, processes and technologies involved in providing situational awareness through the detection, containment, and remediation of Information Security threats. As a Senior Security Operations Analyst, you will be responsible for: Security Monitoring, Incident Response (IR), Threat Hunting and Threat Intelligence capabilities.

What you'll do

• Follow and maintain Incident Response procedures
• Lead or support technical efforts during a critical incident
• Ensure Security Operations tools are effectively utilized and operating, identify gaps in process or procedure and implement new solutions accordingly
• Drive gathering of forensics and evidence
• Will require hands on work with team to help resolve incidents
• Stay abreast of industry trends and changing threat landscape and review technologies/services and make recommendations to continuously improve our capabilities
• Develop and maintain effective relationships with IT and product teams throughout the company to coordinate efforts to protect critical systems and processes
• Communicate vertically and horizontally to keep stakeholders informed and involved on Security Operations matters
• Contribute to the development of and manage information security monitoring tools, techniques, and control activities defined by the company’s Information Security program for both on prem and cloud-based infrastructure

Who you are

• Experience in creating queries and alerts in a SIEM
• Graduate degree in Engineering.
• Experience with Windows/Linux/Mac OS forensics - filesystem, memory and binary analysis
• Experience with Cloud Security (Azure, AWS, GCP)
• Experience in working with NDR/EDR solutions on enterprise level
• Familiarity with Indicators of Compromise (IoCs), Indicators of Attack (IoAs), ATT&CK Tools, Techniques and Procedures (TTPs)
• Strong interpersonal skills, including good communication with the ability to articulate ideas in a precise and concise manner
• Broad knowledge on the entirety of the security spectrum, with specialization in few areas such as log analysis, malware analysis, memory analysis or forensics
• CISSP, GIAC certifications or equivalent (CEH, OSCP)
• Minimum 5 to 7 years’ experience in an information security discipline
• Minimum 3 to 5 years’ experience in security operations and incident response
• SaaS or Security experience is highly preferred.