Threat Analysis/Assessment | Mumbai | Cyber Defense & Resilience

Broad knowledge and experience in infrastructure services including Active

Directory, Email solutions, Patch Management, Privileged Access

Management, IT Asset management etc.

Knowledge on authentication and authorization standards applicable in the

Web application/ Web services - OAuth2, SAMP, and OpenID.

Expertise in handling a variety of security tools for monitoring, analysis, and

incident response and capability to effectively use and adapt to SOC tools and

technologies.

Capable of overseeing, correlating, triaging, and deciphering threat

intelligence feeds, IOCs, and TTPs within SIEM to uncover cyber threats.

Proficient in recognizing indicators of compromise (IOCs), common attack

patterns, and familiar with MITRE/kill chain methodologies for identification.

Technical knowledge on SOC and security monitoring tools such as SIEM,

UEBA, EDR, XDR, SOAR, NBA, DAM, PCAP solutions and threat hunting

activities.

Able to correlate, search and write queries in Splunk (SPL) language on

disparate IT systems, to perform pattern analysis and triaging on billions of

logs received per day by SOC.