Say hello to possibilities.
It’s not everyday that you consider starting a new career. We’re RingCentral, and we’re happy that someone as talented as you is considering this role.
First, a little about us, we’re the global leader in cloud-based communications and collaboration software. We are fundamentally changing the nature of human interaction—giving people the freedom to connect powerfully and personally from anywhere, at any time, on any device.
We’re a $2 billion company that’s growing at 30+% annually.
We are currently looking for a Security Operations Center Analyst, and the key responsibilities are the following:
Security Operations Center Analyst
Job Type: Full-Time
Location: Bangalore
Department: Security
This is a great opportunity to work at a rapidly growing, market leading Unified Communications as-a-service company. RingCentral provides Voice-over-IP (VoIP), hosted PBX, voicemail, SMS, e-fax, and HD video meeting solutions for business.
About this role:
As a SOC Analyst at RingCentral, your primary responsibilities are to implement a comprehensive security monitoring, incident response and threat intelligence program for RingCentral’s global cloud service, corporate and development environments. You will also be collaboratively providing feedback to improve security operations processes, generating actionable analysis and threat intelligence from tools, logs, and other data sources, ensuring strong documentation is in place to support ongoing SOC activities, and reporting your observations to other Security, Operations and IT personnel.
Successful Candidates will:
Have proven skills in application security, security monitoring, incident response and intrusion analysis
Have strong knowledge of the diverse methods and technologies used to attack web/mobile/desktop applications, SaaS infrastructure, and data
Think critically, work well under pressure, and possess strong analytical, written, verbal, and interpersonal skills
Demonstrated track record of quality processes in candidate’s work history
Be strongly self-motivated with an aptitude for both individual and team-oriented work
Have experience following and refining standard operating procedures and playbooks
Responsibilities:
Monitor security events, analyze and investigate alarms, and maintain day-to-day operational activities of a secure cloud environment
Engage teams within and outside of RingCentral to mitigate and resolve cases
Maintain relevant documentation and audit artifacts
Identify and track suspicious system activity
Identify trends and patterns, and present them to Security Engineers to enhance our processes and systems
This role participates in on-call rotations
Qualifications / Requirements:
2+ years in a security engineering, SRE, or SOC roles in a cloud services environment
Experience with SIEM
Experience investigating security incidents
Basic knowledge AWS or GCP
Experience with IDS, case management, and related tools and practices
Experience with Linux, RedHat preferred
Basic knowledge of broad security topics such as encryption, application security, malware, ransomware, etc.
Knowledge of network, VoIP and web related protocols (e.g., TCP/IP, UDP, IPSEC, HTTP, HTTPS, SIP, RTP)
Preferred Skills/Experience:
Any combination of the following certifications:
GCIA (GIAC Certified Intrusion Analyst)
GCIH (GIAC Certified Incident Handler)
GCFA (GIAC Certified Forensic Analyst)
GNFA (GIAC Certified Network Forensic Analyst)
GCFE (GIAC Forensic Examiner)
GASF (GIAC Advanced Smartphone Forensics)
GICA GCTI (GIAC Certified Cyber Threat Intelligence)
GPEN (GIAC Certified Pentester)
GWAPT (GIAC Certified Web Application Pentester)
GPYC (GIAC Certified Python Coder)
OSCP (Offensive Security Certified Pentester)
Experience using Crowdstrike, Cloudflare, FirePower, Splunk, ELK, Imperva, Syslog, packet capture, and Windows Event Log tools and similar tools
Knowledge of current hacking techniques, malicious code trends, botnets, exploits, malware, DDoS, and data breach events
Strong knowledge of Microsoft Windows
Experience automating security tasks, including scripting, programming and/or SecDevOps
Experience working with global teams