Cyber Security Analyst - SIEM Tools (8-11 yrs)

Number of Positions : 01

Type of the Post : Contractual on full time basis.

Place of Posting : Mumbai/ Lucknow

Age Limit : The candidate should not be more than 45 years old as on November 01, 2022.

Educational Qualification :

Engineering Graduate/ Post-Graduate in related field such as Computer Science, IT, Electronics and Communications or a Cyber Security related field OR MCA or equivalent qualification from AICTE/ UGC recognized University. AND IT Security certification(s) like (CISA/ CISM/ CEH/ CISSP/ CCIE(Security))

Note : Preference will be given to candidates with experience on incident, problem, change, and risk management

Job Description :

Experience

- Minimum 07 years of experience in Information and Cyber Security more particularly in all aspects of Cyber Security Operations Centre (CSoC) and Incident Response

Job Profile :

Leads Cyber Security Operations Centre (CSoC) covering but not limited to following responsibilities :

- Managing all technology aspects of currently implemented SIEM tool including configuration/reconfiguration, update/upgrade, refresh etc

- Integration of information all assets and Threat Intelligence feeds with CSoC.

- Rules: New Definition, configuration, correlations, periodic reviews and modifications/refinements

- Integration of application logs for generating alerts including transaction-based alerts

- Monitoring and alerting, review of thresholds, finetuning

- Ensuring mitigation of routine events /incidents in coordination with relevant technology teams/vendors

- Comprehensive reporting

- All activities that are part of Blue team

Primary Skills :

- Knowledge of Information and Cyber Security strategies, tools, techniques and practices.

- Knowledge and familiarity with security tools/systems including but not limited to Security Incident Event Management (SIEM) PIM/PAM NAC Anti APT solution Firewall analyser

Secondary Skills :

- Incident response procedures, techniques, reporting to management, regulator, CERT-IN etc

Competency :

- Hands on in SIEM and CSoC management

- Hands on in writing SIEM Rules: New Definition, configuration, correlations, periodic reviews and modifications/refinements

- Strong knowledge and mind set for Cyber security management

- Ability to independently work as part of security organisation

- Lead and groom the team managing 24X7 SOC operations

- Ability to translate requirements into technical solution and implement

- Ability to Work with diverse technical and non-technical stakeholder individuals / groups (including third parties)

- Ability to provide corrective actions to deal with Cyber event/incidents

- Ability to Work effectively under pressure.

- Ability to benchmark and improve outcome of CSOC and contribute in enhancing Cyber posture

- Ability to pick up new technologies and upskill as required

- Partner with IT teams to address and resolve issues

- Excellent Verbal and Written - Communication and Presentation Skills.

- Ability to effectively work in a team, as well as to be an independent contributor on select projects