ANALYST - CYBER SECURITY SERVICES

Job Description :

Role Security Ops Lead - Security Operations Centre Description Overall 12+ years of experience in the area of IT security, infrastructure security including perimeter, host security solutions.The candidate should have experience in working/setting up SOC (Security Operations Center) for large customer/organizations. Good hands on expertise in any one of the following SIEM Tools : . Rapid7 . RSA Envision . ARCSight . Splunk . MS Sentinel . IBM QRadar Good hands on expertise in any of the following Vulnerability Manager : . Rapid7 . Nessus . QualysGuard Knowledge on SOC Process and underlying technologies including firewalls, Anti-Virus, operating systems, TCP/IP etc. Possesses strong understanding of Malware Behavior (how Trojans/ Backdoors/ Worms work - only Dynamic Analysis background expected Not Static Analysis). Good Knowledge of various type of Attack vectors. Sound Knowledge of windows and UNIX OS. Able to analyse logs from various platforms like OS, network devices, database, web servers etc. Key Responsibilities . Security incidents and occurrences are tracked, analysed, and reported. . Manage, tune, and optimise SIEM tool. . Provide security controls such as IDS/IPS, endpoint security, vulnerability management, and data loss prevention recommendations to the client's security team. . With the support of the SOC manager, create new operational rules, processes, and procedures. . Managing shifts / team in the 24X7. . As an initial point of contact for the SOC team, assist them. . Assist with handing out work assignments to the team members. . Handling escalated security incidents. . Guide and mentor L1 and L2. . Creating Reviewing SOPs, Run books, and Lesson Learnt documents. . Find strategies to improve security procedures on a regular basis. . Documentation: Prepare detailed documentation for an SOC solution to be implemented. . IT Infrastructure Studies: Carry out scoped SOC infrastructure studies including Risk analysis, Gap analysis for clients to technical solutions and document the findings and solution Qualification Prior Experience . Over 12 years of SOC experience. . Experience working with delivery teams and directly with clients . Proven track record as in implementing technical projects . Some IT procurement experience . Experience working with sales teams and directly with International clients . Proven track record in implementing technical projects with India based delivery organization for global customers . Global

Skills Required :

CERTIFIED INFORMATION SECURITY MANAGER