What We'll Bring:

This role is a Consultant GCC member of the TransUnion Global Threat Detection Service Operations team, which includes TDS/SOC analysts, incident handlers as well as folks responsible for red teaming, intelligence analysis, and technical threat researchers. This role will focus on proactive monitoring and alert enhancements for TDS, DLP and other Cyber Threat initiatives when not leading Cyber Threat Detection response efforts to complex attacks against TransUnion.

Protecting the health and wellness of our associates and candidates considering a career at TransUnion is our highest priority. In supporting this vision, our recruitment and new hire experience for this role is fully virtual for the time being. Candidates interviewing will get to know our team over the phone and video, and this role will operate virtually upon hire until we return to the office. Even though we're not physically together right now, our goal is to provide you a supportive candidate and new hire experience that will immerse you in our culture and set you up for success at TransUnion.

The position is located in Pune/Chennai office with a flexible schedule including the ability to work from home. This is a growing team and this position will have a significant role in shaping it.

What You'll Bring:

• Technical Analyst for SOC monitoring and response efforts leveraging threat intelligence, forensics and automation capabilities
• Technical Analyst for Data Loss Prevention and Data at Rest functions where user violations are thoroughly investigated
• Design and build custom tools for investigations and research capabilities
• Assist in the design, evaluation, and implementation of new security technologies
• Participation in SOC emergency on-call rotation escalated up from 24 x 7 SOC monitoring
• Triage of DLP alerts across various DLP tools

Impact You'll Make:

• Overall 5 to 8 years of experience in SOC monitoring (identifying, investigating and responding to complex attacks)
• Incident Response experience a plus
• Strong host forensics analysis skills (EDR, Static & Dynamic analysis)
• Experience with investigative technologies such as SIEM, packet capture analysis and Memory analysis tools
• Strong written and verbal communication skills to engage with other Cyber teams and company employees on Cyber investigations and escalations
• Strong understanding of threat landscape in terms of the tools, tactics, and techniques of Threats employing both commodity and custom Malware
• Experience conducting analysis, escalation and user investigations related to Data Loss Prevention based alerting as well as Insider Threat landscapes
• Understanding of networking and security fundamentals of Windows, Unix/Linux, and Macintosh
• Strong understanding of Cloud-based technologies (CASB, O365, AWS, Azure)
• Experience with Netskope, Microsoft 365 DLP, or Symantec DLP is a plus
• Intermediate Python skills a plus
• Reverse engineering skills a plus