Security Consultant - Security Operations Center (3-4 yrs)

Key Responsibilities :

- Monitor and Respond to security incidents within the Security Operations Center (SOC), ensuring swift identification and mitigation of threats.

- Perform Database Forensics and Email Forensics to investigate and analyze suspicious activities within databases and email systems.

- Utilize SIEM tools (such as Splunk, LogRhythm, or others) to identify, monitor, and respond to security events and anomalies.

- Conduct malware analysis and work with intrusion detection systems (IDS) and endpoint detection and response (EDR) platforms to detect, analyze, and mitigate threats.

- Use data querying languages like Python, SQL, or SIEM QL to extract, manipulate, and analyze security data to support incident response and investigation efforts.

- Collaborate with cross-functional teams to develop and implement response protocols for detected threats.

- Provide expertise in forensic investigation methodologies to accurately identify the scope and impact of security incidents.

- Ensure that all findings are documented and reported in accordance with organizational protocols and regulatory requirements.

- Stay updated on the latest cybersecurity threats and trends to improve incident detection and response processes.

Key Skills and Qualifications :

- 3+ years of hands-on experience in a SOC (Security Operations Center) environment.

- Strong forensics expertise, including database forensics and email forensics.

- Proficiency in using SIEM tools (Splunk, QRadar, ArcSight, etc.) for monitoring, analyzing, and responding to security incidents.

- Experience in network and security monitoring, as well as incident response methodologies.

- Skilled in data querying languages like Python, SQL, SIEM QL, and familiarity with platforms like Splunk.

- Experience with malware analysis, intrusion detection systems (IDS), and endpoint detection and response (EDR) platforms.

- Strong understanding of security operations and the ability to effectively investigate and resolve incidents.

- Engineering or Post-Graduation degree in CS/IT or related field.

- Certifications (one or more) in cybersecurity :

- Certified Ethical Hacker (CEH)

- Certified Hacking Forensic Investigator (CHFI)

- Certified Incident Handler (GCIH)

- Certified Intrusion Analyst (GCIA)

- Certified Computer Security Incident Handler (CSIH)