Security Consultant - Data Centre -Min 10 Yr Experience

Job Description

Position : Security Consultant

Location : Onsite - Gujrat ,Gandhinagar

• State Data Center IT Infrastructure Security Management.
• Vulnerability Management
• Major and Critical Incident with respect to Security Domain
• Log Analysis
• Incident Management
• Problem Management
• Change Management
• Capacity Management
• ISO Management
• Internal/External Audit Management
• Knowledge management (KEDB)
• Root Cause Analysis and Improvement
• Technical Documentation like HLD, LLD, SOPs
• MIS Reports Preparation
• Knowledge Transfer to L1 & L2

Effective handling of Customer/User/Technical Escalations

Supporting Organization operational Goals without penalties.

Supporting Organization on adhering to ISO process

Adhere and ensure team adhere to all the policy and processes defined in client location.

Key Deliverables: -

(a) Addressing the ongoing needs of Security Management including, Monitoring and Management of various devices / tools such as Firewall, SIEM Tool, Intrusion Prevention System, Content Filtering and URL Blocking, Virus Protection, Load Balancer, WAF, DMZs, VLANs, Proxy and vulnerability protection through implementation of proper patches and rules as per best practices.

(b) Carrying out periodic Vulnerability Analysis and Penetration Testing (VAPT) to ensure that SDC systems and network are safe and secure. This activity has to be performed atleast once in month and on need basis as per GOG instructions.

(c) Maintaining an updated knowledge base of all the published security vulnerabilities and virus threats for related software and microcode etc.

(d) Ensuring that patches/workarounds for identified vulnerabilities are patched/ blocked immediately.

(e) Respond to security breaches or other security incidents and ensure that workaround / patches are made available for the same. (f) Provide a well-designed access management system, security of physical and digital IT assets, data and network security, backup and recovery etc.

(g) Maintenance and management of IT security devices, including, but not limited for maintaining firewall services to restrict network protocols and traffic, detecting intrusions or unauthorized access to networks, systems, services, applications or data, protecting email gateways, firewalls, servers, from viruses.

(h) Ensuring that the IT security policy is maintained and updates to the same are made regularly as per ISO 27001:2013, ISO 20000:2018 guidelines.

(i) Access Control Management

(1) Audit Trail and Log Analysis

(2) Establishing and monitoring access control

(j) Firewall policy management which will include the Configuration & Patch Management Intrusion Detection System Management: This arrangement shall include Incident Handling and recovery. The Incident Handling Procedure (IHP) has to be followed as per the guidelines drawn by the DST, GoG. This would also include virus and spam control, policy configuration & management. The audit logs shall be maintained by the Bidder for review. The bidder would also establish counter measures that are needed for the perceived risks. The bidder shall establish the counter measures to mitigate the risk.

(k) The successful bidder would be responsible to ensure that any Vulnerability or security advisory, as notify by CERT-IN, NCIIPC, NIC-CERT, OEM and any other agency should be fixed/complied as per the SLA. The successful bidder (O&M operator) would keep track of such notification and intimate concern authority at and TENDERER immediately.

Technical & Functional Skills & Certifications

Rich Hands-on experience of Network Security Operation.

Manage Operation for complex security solution involving Firewalls, Web Application Firewall (WAF), IDS/IPS, Load-Balancer, Service Load Balance(SLB), Link Load Balancer (LLB), URL Filtering, Anti-Malware, Security Compliance

Firewall: Checkpoint, Fortinet,

Proxy: Cisco WSA

IDS/IPS: Cisco Firepower, Checkpoint IPS

Load Balancer: Array APV

WAF : Fortiweb

Vulnerability Management: Tenable, Nessus, OpenVAS

SIEM / Soar/ Log Management: RSA, Arc Sight

Endpoint and Antivirus Management: Trend Micro Deep Security, Trend Micro Apex One

Email Security: Trend Micro IMSVA, Scan Mail for Exchange

System Hardening, Internal Audit

Knowledge of ISO 27000/ ISO20000 standards

Experience in Risk Assessment, Vulnerability Assessment(VA), Security Policies

Technical Documentation like HLD, LLD, SOPs

Design complex Security Architecture

MIS Reports Preparation

Excellent Troubleshooting & Analytical skill

Good in Managing the Critical Incidents / Problem tickets

Out of Box thought process

Experience in designing Plan of Action for complex Changes Task execution.

Should be able to design Complex Security Architecture

Additional information

Education Qualifications and Certifications

Graduate

Relevant certification in security domain like CCSE / PCNSE / CISM / CISA / CISSP/CEH

Minimum 10 years of relevant experience of Network Security Management.