Listen to this Post
We are currently seeking candidates for SOC L3 (2 positions – 10 years of experience) and SOC L2 (2 positions – 7 years of experience) roles in the BFSI segment. These positions involve Day 2 Operations at our Navi Mumbai location, supporting products like Z Scalar, Akamai WAF, Palo Alto, and Cisco Umbrella.
Key Requirements:
1. Strong expertise in network troubleshooting.
2. In-depth understanding of packet flow.
- Proficiency in packet capture on routers and switches.
- 3 to 4 years of experience in Day 2 troubleshooting.
You Should Know:
1. Network Troubleshooting Commands (Linux/Windows)
- Ping & Traceroute:
ping example.com traceroute example.com (Linux) tracert example.com (Windows)
- Checking Open Ports:
netstat -tuln (Linux) netstat -ano (Windows)
- DNS Lookup:
nslookup example.com dig example.com (Linux)
2. Packet Capture & Analysis
- Using tcpdump (Linux):
sudo tcpdump -i eth0 -w capture.pcap
- Wireshark Filter Examples:
tcp.port == 80 ip.src == 192.168.1.1
- Cisco Packet Capture:
monitor capture start monitor capture stop
- Security Tools (Z Scalar, Palo Alto, Akamai WAF)
– Checking Proxy Logs (Z Scalar):
tail -f /var/log/zscalar/proxy.log
– Palo Alto CLI Commands:
show system info show session all filter source 192.168.1.1
– Akamai WAF Log Analysis:
grep "blocked" /var/log/akamai/waf.log
What Undercode Say:
For SOC analysts, mastering packet analysis, log inspection, and security tools is crucial. Automation with Python (Scapy for packets, Requests for API logs) can enhance efficiency. Always verify traffic anomalies with SIEM tools (Splunk, ELK Stack).
Expected Output:
- Network stability reports
- Security incident logs
- Packet capture analysis (PCAP files)
- WAF/SIEM alert summaries
References:
Reported By: Singhvijayv Dear – Hackers Feeds
Extra Hub: Undercode MoN
Basic Verification: Pass ✅
