Share this Job

Security Operations Analyst

Date:  May 16, 2022
Location: 

Pune, IN

Requisition ID:  31741

About Avaya

Businesses are built by the experiences they provide, and every day millions of those experiences are delivered by Avaya Holdings Corp. (NYSE: AVYA). Avaya is shaping what's next for the future of work, with innovation and partnerships that deliver game-changing business benefits. Our cloud communications solutions and multi-cloud application ecosystem power personalized, intelligent, and effortless customer and employee experiences to help achieve strategic ambitions and desired outcomes. Together, we are committed to help grow your business by delivering Experiences that Matter. Learn more at www.avaya.com.

About The Opportunity

The incumbent Security Analysts perform real-time log analysis to provide network and data security for Avaya leveraging Avaya’s Security Incident and Event Management platforms and coordinating with the Third Party Security Operations Center and Avaya Cybersecurity Emergency Response Team (ACERT). Analysts provide excellent customer service to various operational groups at Avaya while evaluating the type and severity of security events by making use of log and packet analyses, and an in-depth understanding of exploits and vulnerabilities. Resolve issues by taking the appropriate corrective action, or following the appropriate escalation procedures. Document all communications. Work in a team environment and monitor the health and wellness of security devices on Avaya’s networks. 
To be successful in this role you will have in depth knowledge of Security Operations in Public Cloud, Private Cloud, Hybrid Cloud and On Prem environment. The incumbent must maintain current situational awareness of trends in cybersecurity threats, especially those related cloud operations and architecture.  The incumbent must be able to work detailed technical issues with peers and communicating those issues to other operational groups at varying levels of technical detail.  In addition to communicating to a variety of audiences, the incumbent must also be able to think effectively at both a technically detailed level, and an operational level.

About The Responsibilities

Manage all customer situations in a professional manner with emphasis on customer satisfaction 
       o Assess incident severity and escalate to the next level as needed 
       o Keep operations teams and customers abreast of changes in status during issue resolution 
       o Set clear expectations and provide timely follow-up to operations teams and customers as appropriate 
Operational Security (OPSEC) capabilities to deny potential adversaries information about Avaya’s capabilities that specifically relates to the planning and execution of sensitive organizational activities.
Uses the following five-step process to guide OPSEC activities: 
       a .Identify critical information (e.g., the security categorization process); 
       b .Analyze threats; 
       c .Analyze vulnerabilities; 
       d .Assess risks; and 
       e. Apply appropriate countermeasures.
Uses vendor-recommended settings and industry-recognized secure practices that enable the implementation of appropriate physical, administrative and technical mechanisms to develop and maintain:
      o Security and Privacy focused Standardized Operational Procedures
      o A service catalog; 
      o Service Level Agreements (SLAs) for items within the service catalog; and
      o Metrics associated with service delivery to ensure expectations are met.
Develops and maintain end user “guidebooks” that contain recommendations for the secure use of the service(s) to assist in the secure configuration, installation and use of the product and/or service. This includes but is not limited to:
      o Instructions for secure configuration;
      o Information sources on known vulnerabilities and update mechanisms;
      o Error handling and logging mechanisms;
      o Authentication mechanisms;
      o Roles and rights concept including combinations that result in an elevated risk; and
      o Services and functions for administration of the cloud service by privileged users.

About The Requirements

EXPERIENCE

Bachelor’s degree in computer engineering, computer science, or related field.  5+ years of working with some combination of Security Operations within Azure, AWS, GCP, and private- or hybrid-cloud deployments, including at least 3 years of development, operations, and oversight of security operations for large cloud deployments, to include standard cloud security toolsets.  Experience with ElasticStack (ELK), Azure Sentinel and the Microsoft Security Stack, Rapid 7 Insight IDR, Qualys, Varonis and industry certifications (CCSP, CCSK, CCP, etc). are pluses.
•Firm understanding of regular expressions 
•Understanding of database structure and queries 
•Understanding of basic network services, vulnerabilities and attacks 

SKILLS & COMPETENCIES

The incumbent must:

1.must have strong written and verbal communication skills 
2.customer Service background and good written and verbal communication skills 
3.attention to detail and great organizational skills 
4.good interpersonal skills, as well as phone and customer service skills 
5.ability to maintain focus while performing in depth log analysis 
6.possess a solid grounding in information security principles and passion for security operations;
7.possess a deep understanding of cloud computing concepts and cloud security
8.have experiences of implementing and assessing security within some combination of Public, Private, Hybrid Cloud Environments, Outsourced Data Centers and Customer Data Centers;
9.have experience with service-oriented architecture, private and hybrid clouds, and web services security;

10.possess in depth experience with at least two of the following cloud security toolsets:
a.Azure:  Microsoft Defender for Cloud, Cloud App Security, and Sentinel
b.Google:  Security Command Center, Cloud Key Management, Confidential Computing, or 
c.AWS:  Security Hub, AWS Shield, Guard Duty, Macie
11.have effective verbal and written communication skills;
12.be able to independently develop white papers, brochures, presentations and respond to customer questionnaire on operational security issues;
13.possess a solid understanding of industry standards such as PCI DSS, ISO 27xxx, HIPAA, NIST, etc;
14.exhibit flexibility and an ability to think creatively and in a way that identifies solutions;
15.be willing to analyze challenges and share opinions on possible solutions;
16.be able to quickly assess priorities and triage matters; 
17.be able to solve complex problems; 
18.exhibit calm under pressure; 
19.understand business processes; 
20.demonstrate high levels of motivation and achieve success without task-by-task direction; 
21.act with the highest levels of professionalism and integrity; and 
22.treat others with respect.

ADDITIONAL INFORMATION

•Must be able to manage customer accounts and confidently communicate technical information to Avaya client base 
•Maintain keen understanding of evolving Internet threats to ensure the security of Avaya networks 
•Learn Avaya products in the area(s) of security support responsibility in order to support them when released 
•Write technical articles for internal knowledge base 
•Participate in knowledge sharing with other security analysts and develop customer solutions efficiently 
•Coordinate or participate in individual or team projects to ensure quality support for our users and customers 
•Perform other essential duties as assigned 
 

Experience

7+ Years of Experience

Education

Bachelor degree or equivalent experience

Preferred Certifications

Footer

Avaya is an Equal Opportunity employer and a U.S. Federal Contractor. Our commitment to equality is a core value of Avaya. All qualified applicants and employees receive equal treatment without consideration for race, religion, sex, age, sexual orientation, gender identity, national origin, disability, status as a protected veteran or any other protected characteristic. In general, positions at Avaya require the ability to communicate and use office technology effectively. Physical requirements may vary by assigned work location. This job brief/description is subject to change. Nothing in this job description restricts Avaya right to alter the duties and responsibilities of this position at any time for any reason. You may also review the Avaya Global Privacy Policy (accessible at https://www.avaya.com/en/privacy/policy/) and applicable Privacy Statement relevant to this job posting (accessible at https://www.avaya.com/en/documents/info-applicants.pdf).

#LI-LC2