SOC Analyst

Role: SOC Analyst

Location: Pune (WFO)

Life Unlimited. At Smith+Nephew, we design and manufacture technology that takes the limits off living.

The Security Analyst works on the detection and response for potential security incidents on the Smith & Nephew network, systems, and applications. This includes technical analysis and incident management, communications, and reporting. The role works with the Global SOC Manager. The work includes partnering closely with other functions within Information Security, with outsourced tier 1 SOC functions, with the wider IT team including Service Desk, as well as with HR, Legal, Procurement, and other functions. The role interacts with end users and technical resolver teams within Smith & Nephew as well as outsourced suppliers. The role is shift-based Monday to Friday outside regular office hours and also includes an on-call component for weekends.

What will you be doing?

• Execute alert and incident response activities following standard runbooks and processes, with work to include the initial triage and analysis, recording of the incident with all relevant details to high standards, and documenting all containment and response actions.
• Uses Smith+Nephew technology platforms and security tools to conduct investigations such as threat hunting or other proactive investigations outside the incident process.
• Write comprehensive reports including assessment-based findings, outcomes, and propositions for enhancements such as new detection plays, new runbooks or playbooks, process improvements, or tuning detection rules.
• Mentoring and coaching other team members, sharing skills and experience to enable higher levels of performance.
• Provide technical domain expertise to projects and initiatives aimed at improving the capability and maturity of Smith & Nephew information security practices.

What you will need to be successful?

• Education: Bachelor´s degree or equivalent experience in Computer Science or related subject preferred.
• Licenses/ Certifications: Relevant entry- or mid-level security certifications are advantageous but not required. Job-specific training will be provided.
• Experience: At least 5 years of experience in a relevant information security role.
• This role will be based in Pune and will be working from office.
• Experience working hands-on with SIEM and EDR/XDR technologies for the identification and response to existing and emerging threats.
• Familiarize yourself with MITRE ATT&CK for the identification and mapping of attacker tactics, techniques, and procedures (TTPs).
• Familiarity with network models (OSI and TCP/IP), common network terminology and concepts, and network equipment.
• Must be able to correctly interpret logs for firewalls (including WAF and IDS/IPS), Windows and Linux operating system logs, and AWS and Azure cloud logs.
• Familiarity with web related technologies (web applications, web services, service-oriented architectures) and network/web related protocols.
• Understanding of industry frameworks such as MITRE ATT&CK, MITRE D3FEND, NIST CSFv2, and NIST SP800-61r2.
• Using SIEM (including scripted query languages) and EDR/XDR technologies, threat intelligence tools, and ITSM tools.
• Familiarity with AWS and Azure cloud technologies and cloud security standards (CSA or equivalent).
• Understanding of API security and familiarity with AI security concepts (such as NIST AI RMF).
• Familiarity with ITIL methodology and terminology.
• Excellent written and oral communication skills, service attitude, and analytical approach to problem solving.
• Ability to work independently without daily direction, balance conflicting priorities, and effectively track and manage task completion to committed deadlines.

You Unlimited.

We believe in crafting the greatest good for society. Our strongest investments are in our people and the patients we serve.

Inclusion, Diversity and Equity- Committed to Welcoming, Celebrating and Thriving on Diversity, Learn more about Employee Inclusion Groups on our website (https://www.smith-nephew.com/).

Other reasons why you will love it here!

• Your Future: Major Medical coverage + Policy exclusions and insurance non-medical limit. Educational Assistance.
• Work/Life Balance: Flexible Personal/Vacation Time Off, Privilege Leave, Floater Leave.
• Your Wellbeing: Parents / Parents in Law’s Insurance (Employer Contribution of 8,000/- annually), Employee Assistance Program, Parental Leave.
• Flexibility: Hybrid Work Model (For most professional roles)
• Training: Hands-On, Team-Customized, Mentorship
• Extra Perks: Free Cab Transport facility for all employees, One Time Meal provided to all employees as per shift. Night Shift Allowances.

#DP1