Company Description Arista Networks is an industry leader in data-driven, client-to-cloud networking for large data center, campus and routing environments. What sets us apart is our relentless pursuit of innovation. We leverage the latest advancements in cloud computing, artificial intelligence, and software-defined networking to provide our clients with a competitive edge in an increasingly interconnected world. Our solutions are designed to not only meet the current demands of the digital landscape but to also anticipate and adapt to future challenges. At Arista we value the diversity of thought and perspectives that each employee brings to the table. We believe that fostering an inclusive environment, where individuals from various backgrounds and experiences feel welcome, is essential for driving creativity and innovation. Our commitment to excellence has earned us several prestigious awards, such as Best Engineering Team, Best Company for Diversity, Compensation, and Work-Life Balance. At Arista, we take pride in our track record of success and strive to maintain the highest standards of quality and performance in everything we do. Job Description Who You’ll Work With We are seeking a highly motivated and proactive Security Operations Center (SOC) Analyst to join our dynamic, remote cybersecurity team. The ideal candidate is a critical thinker, self-starter, and driven professional with hands-on experience using Crowdstrike or other EDRs. You will play a critical role in monitoring, triaging, and responding to cyber threats across our primarily Mac and Linux environments, with some Windows systems. You will work closely with a collaborative team of fellow SOC analysts, incident responders, threat hunters, and cross-functional partners across IT, engineering, and DevOps to ensure our security posture remains strong. We’re looking for someone who takes ownership, excels in high-pressure settings, and is skilled in writing CrowdStrike Query Language (CQL) (or similar) to create effective detections that protect our organization’s assets. What You’ll Do - Monitor and triage security alerts. - Build, test, and refine detections to enhance threat identification across Mac, Linux, and Windows systems. - Conduct in-depth analysis of security incidents, including malware, phishing, and advanced persistent threats, leveraging SIEM and EDR capabilities. - Perform proactive threat hunting using the SIEM and EDR features. - Investigate and respond to incidents swiftly, following established incident response protocols. - Document findings clearly and provide actionable remediation recommendations. - Collaborate with cross-functional teams to strengthen security controls and mitigate vulnerabilities. - Stay current on emerging threats, vulnerabilities, and industry trends through self-directed learning. - Participate in on-call rotation for 24x7x365 SOC coverage, demonstrating reliability and accountability. - Escalate confirmed or suspicious incidents and cases to the Incident Response team. Qualifications - 4-5+ years in a SOC and or active participant on incident response teams. - Hands-on experience with CrowdStrike (or other EDR), triaging security incidents. - Proven ability to write CQL (or similar) queries and build detections for threat monitoring. - Experience triaging alerts in a high-volume environment. - Experience with threat intelligence feeds, platform and OSINT tools (VirusTotal, etc.) - Familiarity with forensic analysis and evidence handling. Skills and Attributes: - Exceptional critical thinking and analytical skills to address complex security challenges. - Self-starter with a proven ability to take initiative and deliver results independently. - Driven mindset, thriving in fast-paced, high-pressure remote work environments. - Strong understanding of cybersecurity principles, threat landscapes, and attack vectors. - Proficiency in analyzing logs, network traffic, and endpoint data using CrowdStrike Next-Gen SIEM, particularly for Mac and Linux systems (Windows experience a plus). - Solid knowledge of incident response processes and methodologies. - Familiarity with operating systems, with primary expertise in Mac and Linux, and secondary knowledge of Windows. - High attention to detail and ability to make sound decisions under pressure. - Demonstrated commitment to continuous learning and professional development in cybersecurity. Nice-to-Have: - Write and optimize detections to detect and investigate security events. - Proficiency in scripting (e.g., Python) for automating SOC workflows. - Experience creating playbooks in Crowdstrike Fusion SOAR (or similar SOAR) - Knowledge of cloud security (GCP, AWS, and or Azure). - Bachelor’s degree in Cybersecurity, Information Technology, Computer Science, or a related field (or equivalent experience). #LI-SZ1 Additional Information Arista stands out as an engineering-centric company. Our leadership, including founders and engineering managers, are all engineers who understand sound software engineering principles and the importance of doing things right. We hire globally into our diverse team. At Arista, engineers have complete ownership of their projects. Our management structure is flat and streamlined, and software engineering is led by those who understand it best. We prioritize the development and utilization of test automation tools. Our engineers have access to every part of the company, providing opportunities to work across various domains. Arista is headquartered in Santa Clara, California, with development offices in Australia, Canada, India, Ireland, and the US. We consider all our R&D centers equal in stature. Join us to shape the future of networking and be part of a culture that values invention, quality, respect, and fun.

Title: Specialist-Infrastructure Operations_D-2318 Location: India United States Job Description: Tools Proficiency: Expertise in common tools such as ServiceNow, Jira, Confluence, SAP Office365 Services, Active Directory, Entra-ID, NetIQ Identity Manager, One Identity Manager, CIS Security Standards and Practices: Understanding of security frameworks like ISO 27001, NIST, and best practices for network security as well as GISF Lifecycle Management: Knowledge of HR lifecycle management and end-of-life processes. Collaboration: Strong interpersonal skills to work effectively with international teams and stakeholders. Supportive Attitude. Stakeholder Engagement. Communication Skills (English): Ability to communicate technical information clearly and understandably, both in writing and verbally. Cultural Awareness: Sensitivity to work in a diverse and multicultural environment. Qualifications - Bachelor's degree in Computer Science, Information Security, or a related field. Master's degree preferred. - Minimum of 5 years of experience in Identity and Access Management. Your benefits: - We offer a hybrid work model which recognizes the value of striking a balance between in-person collaboration and remote working incl. up to 25 days per year working from abroad - We believe in rewarding performance and our compensation and benefits package includes a company bonus scheme, pension, employee shares program and multiple employee discounts (details vary by location) - From career development and digital learning programs to international career mobility, we offer lifelong learning for our employees worldwide and an environment where innovation, delivery and empowerment are fostered - Flexible working, health and wellbeing offers (including healthcare and parental leave benefits) support to balance family and career and help our people return from career breaks with experience that nothing else can teach About Allianz Technology Allianz Technology is the global IT service provider for Allianz and delivers IT solutions that drive the digitalization of the Group. With more than 11,000 employees located in 20 countries around the globe, Allianz Technology works together with other Allianz entities in pioneering the digitalization of the financial services industry.We oversee the full digitalization spectrum - from one of the industry's largest IT infrastructure projects that includes data centers, networking and security, to application platforms that span from workplace services to digital interaction. In short, we deliver full-scale, end-to-end IT solutions for Allianz in the digital age. D&I statement Allianz Technology is proud to be an equal opportunity employer encouraging diversity in the working environment. We are interested in your strengths and experience. We welcome all applications from all people regardless of gender identity and/or expression, sexual orientation, race or ethnicity, age, nationality, religion, disability, or philosophy of life.

• Manage event and information intake to include intelligence reports • Monitor ticket queues • Investigate reported incidents • Interact with other security and infrastructure groups as necessary • Review incidents to assess their urgency and escalate incidents if necessary • Triage alerts • Correlate and analyze events and data to determine the scope of cyber security incidents • Recognize attacker tactics, techniques, and procedures as potential indicators of compromise (IOCs) • Assist in tuning SIEM and IDS alerting to reduce false positives, improve productivity, and improve detection capabilities • Develop automation playbooks • Provide prescriptive remediation guidance to IT and network teams • Document incident responses with the detailed root cause and recommendations • Provide 24x7 (on-call) support • Monitor and manage/support all event sources, Endpoint Protection Systems (EDR/XDR), and other security tools to monitor and manage security incidents • Participate in organizational projects, as required • Ticket & Ticket Management

• Actively monitor SIEM, IDS/IPS, EDR, firewalls, and other security systems for suspicious activity • Triage and analyze security alerts, identifying true threats vs. false positives • Support incident response activities including triage, containment, eradication, and recovery • Analyze security logs and correlate events across multiple sources • Integrate threat intelligence into monitoring workflows and incident investigations • Document incident details, timelines, and actions taken • Assist in tuning, configuring, and maintaining security tools • Support compliance initiatives aligned to NIST, FISMA, and internal policies • Collaborate with SOC team members, incident responders, and IT operations • Maintain awareness of emerging cyber threats, vulnerabilities, and security practices