Cyber Security Specialist - Threat Hunting (3-6 yrs)

Job Description :

Role : Cybersecurity Specialist.

Location : Gurgaon, Haryana, India.

Position : Cybersecurity Specialist (On-Site).

Key Responsibilities :

Security Architecture and Design :

- Design and implement robust cybersecurity architectures for AI-driven and geospatial platforms, ensuring security-by-design principles.

- Develop secure network designs, encryption protocols, and secure coding practices to protect data at rest and in transit.

Threat Detection and Response :

- Deploy and manage intrusion detection/prevention systems (IDS/IPS) and SIEM solutions (Splunk, QRadar) to monitor and respond to security incidents.

- Utilise advanced threat hunting techniques, including behaviour analytics, anomaly detection, and machine learning models, to proactively identify potential threats.

Vulnerability Management :

- Conduct regular vulnerability assessments, penetration testing, and security audits using tools like Nessus, OpenVAS, Metasploit, and Burp Suite.

- Implement patch management strategies, ensuring that all systems are up-to-date with the latest security patches.

Incident Response and Forensics :

- Lead incident response efforts, coordinating with internal teams to mitigate threats, analyse attack vectors, and implement recovery procedures.

- Perform digital forensics and root cause analysis to understand breaches and develop strategies to prevent future incidents.

Cloud Security and Compliance :

- Secure cloud-based deployments on AWS, Azure, or Google Cloud, using services like AWS Shield, Azure Security Center, and Google Cloud Armor.

- Ensure compliance with cybersecurity standards and regulations (ISO 27001, NIST, GDPR), maintaining detailed documentation and reporting.

Identity and Access Management (IAM) :

- Design and manage IAM frameworks, implementing Multi-Factor Authentication (MFA), Role-Based Access Control (RBAC), and Single Sign-On (SSO) solutions.

- Monitor and control access to sensitive systems, ensuring least-privilege access policies are enforced.

Security Automation and DevSecOps :

- Integrate security practices into CI/CD pipelines, automating security scans, code reviews, and compliance checks using tools like Jenkins, GitLab CI, and Ansible.

- Develop automated response playbooks using SOAR platforms (Security Orchestration, Automation, and Response) to reduce response times and manual intervention.

Security Awareness and Training :

- Conduct security training sessions and awareness programs for employees, focusing on phishing prevention, safe browsing practices, and incident reporting procedures.

- Develop educational content to enhance the cybersecurity posture of the organization.

Collaboration and Reporting :

- Work closely with cross-functional teams, including software developers, AI/ML engineers, and network administrators, to ensure security measures are embedded in all operations.

- Prepare detailed security reports, metrics, and dashboards for senior management, highlighting risk levels, incidents, and improvement recommendations.

Qualifications :

Educational Background :

- Bachelor's or Master's degree in Cybersecurity, Computer Science, or related fields.

- Certifications like CISSP, CEH, or OSCP are highly preferred.

Experience :

- Minimum 3 years of hands-on experience in cybersecurity roles, particularly in threat detection, incident response, and security architecture.

Technical Skills :

- Proficient in cybersecurity tools (Wireshark, Kali Linux, Snort) and programming languages (Python, PowerShell) for automation and scripting.

- Strong knowledge of encryption, firewalls, VPNs, IDS/IPS, and endpoint protection.

- Familiarity with AI-driven threat detection models and big data analytics for cybersecurity.

Problem-Solving :

- Strong analytical skills to diagnose complex security issues and implement effective solutions.

Communication :

- Excellent written and verbal communication skills, capable of articulating security concepts to both technical and non-technical audiences.

Attention to Detail :

- Meticulous approach to security, with a keen eye for potential vulnerabilities and areas of improvement.