What makes Cognizant a unique place to work?
The combination of rapid growth and an international and innovative environment!
This is creating many opportunities for people like YOU — people with an entrepreneurial spirit who want to make a difference in this world.
At Cognizant, we engineer modern businesses to improve everyday life because we're dedicated to making a lasting impact.
Cognizant (Nasdaq: CTSH) engineers modern businesses.
We help our clients modernize technology, reimagine processes and transform experiences so they can stay ahead in our fast-changing world.
Together, we're improving everyday life.
See how at www.cognizant.com or @cognizant.
The Role: Cognizant is seeking a skilled Endpoint Security and SOC Analyst with a robust understanding of security tools, systems, and protocols to ensure the security and integrity of client's IT environment.
This combined role focuses on managing endpoint security measures and actively monitoring security incidents within the SOC.
This role requires technical expertise to drive operational effectiveness, optimize security alerting, and streamline log correlation and analysis.
The ideal candidate will have a strong background in managing MS Azure Sentinel (SIEM), MS Defender XDR, MS Defender for O365 (email security), and CrowdStrike EDR, along with hands-on experience in vulnerability management, log analysis, threat intelligence, and incident management.
In your first few weeks in this role, you can expect to: Configure and manage endpoint security solutions (CrowdStrike Endpoint Security and MS Defender XDR).Monitor and respond to endpoint security incidents, identifying potential threats.Perform endpoint security audits and assessments to ensure compliance with policies.Ensure continuous updates and patches for endpoint security tools and operating systems.Govern and manage Email Security solutions (MS Defender for O365).Collaborate with service leads, business teams, infra teams, security operations and offer technical guidance.Understand the IT security requirements of the business and implement measures to satisfy those requirements in the most efficient manner.Handle priority, severity issues/incidents and escalations.Work on product roadmaps and complement capability roadmaps like new functionality.Contribute to the risk, audit hygiene and governance for the function.Document security infrastructure, process, run book and operational manuals.Report and log correlation using MS PowerPoint, Excel and SIEM solutions.SOC Management: Administration and monitoring of the MS Azure Sentinel SIEM tool.Monitor security events and alerts from various sources including SIEM and endpoint security tools.Provide first-line analysis for potential security incidents and escalate as necessary.Provide accurate and priority-driven analysis on cyber activity/threats.Collaborate with cross-functional teams to ensure proactive detection and mitigation of threats.Monitor external event sources for security intelligence and actionable incidents.Document investigation results, ensuring relevant details are passed to senior analyst and stakeholders.Monitor devices, services and their components' health and availability.Prepare daily/weekly/monthly reports.Create offline playbooks and SOPs.Stay up to date with the latest endpoint security threats and vulnerabilities.Collaborate with threat intelligence teams to gather information on emerging threats.Assist in the identification, prioritization, and remediation of vulnerabilities across endpoints.To apply for this role, your soft skills, expertise and experience should include: Experience with endpoint security tools (CrowdStrike Endpoint Security and Microsoft Defender XDR, and Email Security MS Defender for O365).Strong understanding of endpoint hardening and patch management.Hands-on experience with vulnerability management processes and tools - Tenable IO and CrowdStrike Spotlight.Experience in Security Operations Centre (SOC) monitoring and incident response.Familiarity with SIEM (Security Information and Event Management) tools.Strong analytical skills to investigate and resolve security incidents.Familiarity with threat intelligence feeds and threat actor tactics, techniques, and procedures (TTPs).Understanding of the cybersecurity landscape and emerging threats.Knowledge of information security policies and frameworks (e.g., NIST, ISO 27001).Experience in ensuring compliance with relevant security standards and regulations.Ability to create detailed incident reports and recommend mitigation strategies.Strong communication skills to collaborate with internal teams and stakeholders.You'll receive an excellent salary and benefits package for your knowledge, expertise and flexibility.
At Cognizant, taking care of employees is a priority:
You can pursue innovative career tracks and opportunities here.You can enhance your professional development through education and dedicated training.We'll give you the skills you need to keep pace with the changing workplace while our compensation, benefits and wellness packages help you stay healthy and plan for the future.Please get in touch with our Cognizant team today to apply and register your interest in this full-time role.
We're looking forward to meeting you.
#J-18808-Ljbffr