Upload Button Icon Add office photos
filter salaries All Filters

11 Ankura Jobs

Senior Associate, Cybersecurity MDR

4-9 years

Gurgaon / Gurugram

1 vacancy

Senior Associate, Cybersecurity MDR

Ankura

posted 12d ago

Job Description

  • Reporting: Director - Threat Detection Operations (TDO)
  • Duties include providing On-Job Training to fellow Senior Analysts and Analysts, continuous monitoring of Security Information Event Management (SIEM), EDR, XDR and related platforms for correlated events and alerts and working with the client to take action. Senior Analysts leverage events to determine the impact, document possible causes, and provide useful information to clients.
  • A deep understanding of various commercial and open-source network sensors, intrusion detection systems, and event log correlation engines is required as senior analysts are expected to deliver enhanced threat awareness and knowledge through research and continuous improvement of use cases, signatures, and metrics.
  • Expected to help automate anomaly detection and alerting while documenting security incidents, processes, investigations, and remediation efforts.
  • Senior Analysts are also expected to maintain open communication and visibility with their team members, Directors, and Clients.
  • Usually, employees will be permitted to work remotely in the current operational setup however that setup may change based on company and/or business needs, with or without notice. It may also be considered a conditional privilege as the employees are personally responsible to maintain uninterrupted availability and communication via all official channels throughout their designated shifts. If the employees performance cannot be satisfactorily ascertained by their manager or the employee is unable to adapt to work without disturbance, they may be called upon to work out of the company s office.
CAPABILITIES
  • Knowledge of IR process, ticketing tools, Knowledgeable in various IR response commands related to Windows, Linux
  • Strong knowledge on advanced attack techniques related to Endpoints and servers, Threat hunting using EDR/XDR.
  • Experience in handling latest attack techniques LOLBAS, fileless malware etc.
  • Experience in monitor globally emerging threats, vulnerabilities, malicious activities etc. research about the same and reports to concerned teams and management for proactive actions.
  • Must have knowledge of various OSINT tools: VirusTotal, Cisco Talos Intelligence, IBM X-force Exchange, URL.io etc. during the investigation of security alerts.
  • Capable to handle a team of L1 analysts, impart training etc
  • Must have experience of Vulnerability management to identify emerging risks in organizations environment using Qualys, Nessus, MS-Defender etc
  • Knowledgeable about Automation and SOAR
  • Must have the necessary experience to conduct initial triage and in depth analysis of security events and incidents; determine the priority, criticality, and impact; facilitate communication within the clients SOC, escalate to the for containment and remediation, and document/journal progress throughout the Incident Response Lifecycle within the respective service level objectives.
  • Required to have experience in conducting research analysis and data gathering requirements to present in a report format.
  • Should be detail-oriented and able to work independently and communicate effectively both verbally and in writing.Must be flexible enough to work in a 24x7 rotational shift setup, including overnight, weekend, and national holidays.
TECHNICAL
  • Emerging SIEM/XDR such as MS Azure Sentinel, SentinelOne
  • Experience with security tools: Nessus, Burpsuite, Acunetix, Kali Linux
  • Strong knowledge on XDR tools such as Sentinel One, Cortex, CrowdStrike, Microsoft etc
  • Understanding of KQL, Lucene, Python, and/or other similar programming/query/scripting languages
  • Proficient in finetuning detection rules of XDR, creation of SOPs, Playbooks for various scenarios and techniques
EDUCATION, EXPERINCE, TRAINING CERTIFICATIONS
  • Minimum Experince in SOC/IR/VM 4 yrs plus
  • Preferred to have a degree in CS/IT or a Masterss Diploma in the field of IT Security.
  • Certifications such as CEH, Security+ CHFI,ACE, and specific to vendor XDR tools SentinelOne cortex, Microsoft CrowdStrike etc
COMMUNICATION
  • Comfortable working in a remote work environment including web-based team management and collaboration applications, and time-keeping systems e.g. Slack, Microsoft Teams, Intapp, and Workday.
  • Ability to communicate complex ideas effectively, both verbally and in writing in English and the local office language(s)
  • Able to provide reports showing progress or achievement of assigned goals and responsibilities as required.
  • Must be an active listener and ask questions of others when clarity is needed
  • Ability to gain an understanding of client needs and apply analytic reasoning
  • Demonstrates proactive engagement in meetings and process discussions
KEY PERFORMANCE INDICATORS
  • Analyze client networks for threats using analytical platforms for event monitoring such as NSM, SIEM, UEBA, ETDR.
  • Deliver client reports based on analyses that are timely, high quality, and accurate.
  • Understand and support incident response and triage
  • Improve reporting to avoid analysis paralysis .
  • Develop new skills within analytical platforms
INDIVIDUAL TEAMWORK
  • Must be able to effortlessly switch between independent and team-based work
  • Understands that the work product is dependent on team efforts and remains responsive to internal and external deadlines
  • Able to share expertise and experience with team members to encourage growth and shared success
  • Able to maintain focus and attention to detail for sustained periods of time
  • Engaged in supporting the development and growth of all team members
GROWTH MINDSET
  • Can receive and provide feedback in a constructive manner that leads to the growth of self and others.
  • Displays perseverance of effort and passion for a long-term goal and end state.
  • Works well under timelines and puts in extra effort as required to meet timelines.
  • Self-motivated to identify areas for team process improvement and collaborate with others to develop creative solutions
LEADERSHIP TRAITS
  • Willing to adapt leadership skills to support larger and more complex projects.
  • Work product for self and team is consistently of excellent quality and efficiency.
  • Respectful and professional in all interactions with team members, clients, and colleagues.
  • Maintains composure and calm disposition under high-pressure or stressful circumstances.

Employment Type: Full Time, Permanent

Read full job description

Ankura Interview Questions & Tips

Prepare for Ankura Senior Associate roles with real interview advice

People are getting interviews at Ankura through

(based on 2 Ankura interviews)
Company Website
Job Portal
50%
50%
Low Confidence
?
Low Confidence means the data is based on a small number of responses received from the candidates.

What people at Ankura are saying

5.0
 Rating based on 1 Senior Associate review

Likes

Work Life Balance Culture Team Building

Dislikes

Nothing is bad in this company.

Read 1 review

Senior Associate salary at Ankura

reported by 10 employees with 6-14 years exp.
₹8.3 L/yr - ₹27 L/yr
79% more than the average Senior Associate Salary in India
View more details

What Ankura employees are saying about work life

based on 7 employees
100%
50%
100%
Flexible timing
Rotational Shift
Within city
View more insights

Ankura Benefits

Free Transport
Child care
Gymnasium
Cafeteria
Work From Home
Free Food +6 more
View more benefits

Compare Ankura with

KPMG India

3.5
Compare

Deloitte

3.8
Compare

PwC

3.4
Compare

Ernst & Young

3.5
Compare

McKinsey & Company

3.9
Compare

Bain & Company

3.7
Compare

BCG

3.8
Compare

Accenture

3.9
Compare

IBM

4.1
Compare

Infosys

3.7
Compare

ZS

3.4
Compare

Mercer

3.7
Compare

Citco

3.2
Compare

Willis Towers Watson

3.8
Compare

Guidehouse

3.9
Compare

WSP

4.3
Compare

Mott MacDonald

4.2
Compare

Gartner

4.1
Compare

Blackrock

3.8
Compare

Protiviti

3.2
Compare

Similar Jobs for you

Associate at Ankura

Gurgaon / Gurugram

2-5 Yrs

₹ 4-7 LPA

Dr Analyst at Palo Alto Networks.

Bangalore / Bengaluru

3-8 Yrs

₹ 5-10 LPA

Security Engineer at Infobahn Softworld Inc.

Kolkata, Mumbai + 5

7-8 Yrs

₹ 9-10 LPA

Associate at Ankura

Gurgaon / Gurugram

3-6 Yrs

₹ 5-8 LPA

Security Lead at Silicon Image India Research Development Pvt Ltd

Pune

5-8 Yrs

₹ 7-10 LPA

Security Engineer at Convera

Pune

5-8 Yrs

₹ 10-10 LPA

Market Analyst at Cowbell Cyber Inc.

Pune

3-5 Yrs

₹ 5-7 LPA

Senior Manager at NETENRICH TECHNOLOGIES PVT LTD

Hyderabad / Secunderabad, Bangalore / Bengaluru

7-12 Yrs

₹ 12-16 LPA

Manager at Palo Alto Networks.

Bangalore / Bengaluru

9-14 Yrs

₹ 13-18 LPA

Senior Technical Lead at Birlasoft (India) Limited

Pune

7-8 Yrs

₹ 9-10 LPA

Senior Associate, Cybersecurity MDR

4-9 Yrs

Gurgaon / Gurugram

12d ago·via naukri.com

Senior Server Engineer

10-15 Yrs

Gurgaon / Gurugram

12d ago·via naukri.com

Associate, Cybersecurity MDR

2-5 Yrs

Gurgaon / Gurugram

12d ago·via naukri.com

Associate, Cybersecurity

3-6 Yrs

Gurgaon / Gurugram

1mon ago·via naukri.com

Website Developer - Senior Associate

3-5 Yrs

Gurgaon / Gurugram

2mon ago·via naukri.com

Learning & Development Associate

0-4 Yrs

Gurgaon / Gurugram

2mon ago·via naukri.com

Learning & Development Associate

2-3 Yrs

Gurgaon / Gurugram

3mon ago·via naukri.com

Senior Associate - Database Administration

3-6 Yrs

Gurgaon / Gurugram

3mon ago·via naukri.com

Cyber Security Governance, Risk and Control (GRC) Analyst

2-7 Yrs

Gurgaon / Gurugram

3mon ago·via naukri.com

Operations Associate - ABS

0-3 Yrs

Mumbai

4mon ago·via naukri.com
write
Share an Interview