Home
Communities
Companies
- Companies
  
  Discover best places to work
- Compare Companies
  
  Compare & find best workplace
- Add Office Photos
  
  Bring your workplace to life
- Add Company Benefits
  
  Highlight your company's perks
Reviews
- Company reviews
  
  Read reviews for 6L+ companies
- Write a review
  
  Rate your former or current company
Salaries
- Browse salaries
  
  Discover salaries for 6L+ companies
- Salary calculator
  
  Calculate your take home salary
- Are you paid fairly?
  
  Check your market value
- Share your salary
  
  Help other jobseekers
- Gratuity calculator
  
  Check your gratuity amount
- HRA calculator
  
  Check how much of your HRA is tax-free
- Salary hike calculator
  
  Check your salary hike
Interviews
- Company interviews
  
  Read interviews for 40K+ companies
- Campus placements
  
  Interviews questions for 2K+ colleges
- Share interview questions
  
  Contribute your interview questions
Jobs
Awards

WINNERS AWAITED!
- ABECA 2025
  
  WINNERS AWAITED!
  
  AmbitionBox Employee Choice Awards - 4th Edition
- ABECA 2024
  
  AmbitionBox Employee Choice Awards - 3rd Edition
- AmbitionBox Best Places to Work 2022
  
  2nd Edition
- AmbitionBox Best Places to Work 2021
  
  1st Edition

Add office photos

Employer? Claim Account for FREE

WebEx

Compare

4.7

based on 22 Reviews

138 WebEx Jobs

Security Engineer ( Vulnerability Analysis, Penetration Testing

WebEx Communications India (P) Ltd.

4.7

based on 22 Reviews

3-7 years

Bangalore / Bengaluru

1 vacancy

Security Engineer ( Vulnerability Analysis, Penetration Testing

WebEx

posted 1mon ago

Job Role Insights

Flexible timing

Key skills for the job

Architecting Cisco Linux Administration Information Security Security Operations Center ISO 27001 Lead Auditor

+ 2 more

Job Description

What You ll Do

The SBG Security Operations Team is seeking an experienced candidate to serve as a Cyber Threat Analyst. The successful candidate is proficient in numerous security technologies, understands the motivations and capabilities of sophisticated threat actors and can communicate risks and make recommendations associated with specific network threats. The Cyber Threat Analyst will conduct threat intelligence research and hunt operations for threat indicators discovered in intelligence or within security incidents shared by partner analysts.

Roles and Responsibilities:

Actively researching new TTPs from public and internal reporting
Develop and maintain a library of ad-hoc threat hunts for other teams to use daily
Applying the output of threat hunts are into new detections and gap assessment
Demonstrate expertise by uncovering adversary activity not detected by our current detection rules
Review and analyze security data within the SIEM and network traffic such as full packet captures and/or Netflow data to detect traffic anomalies, identify infected systems and threat actor related activity based on known tactics, techniques, and procedures.
Monitor various security blogs, alerts and notifications, RSS feeds and forums to keep abreast of the latest security news, attacks, threats, vulnerabilities and exploits.
Build content feeds to detect malicious traffic based on known or detected indicators of compromise.
Build automated log correlations in Splunk or a similar tool to identify anomalous and potentially malicious behavior.
Act in concert with Cyber Threat Intelligence to understand threats and to determine what risk these threats present to the client.
Incorporate CTI findings into threat hunting activities and workflow.
Contribute to incident response teams, maintaining relevant communication in emails, ticket summaries, analysis and reporting. Work with Incident Handlers to provide recommendations for remediation of compromised systems and any relevant countermeasures.
Review, create or document standard operating procedures, recommendations, projects specific documents and resource guides as needed.
Supervise vulnerabilities and work with engineering teams to drive proper mitigations.
Supervise security operations queues to ensure timely triage of operations events and requests
Supervise global vulnerability feeds, assess impact to the business and respond promptly
Participate in security incident investigations and retrospect on security events
Ensure all required logging is enabled and collected in SIEM tool
Participate in on-call rotations as needed to support continuous monitoring needs that may lay outside of business hours

Who You Are

You have experience in providing security operations services including threat hunting, vulnerability analysis and incident response in cloud native environments. You successfully establish relationships with clients based on collaboration, empathy, and pursuit of excellence.

Bachelors + 5 years of related experience or Masters + 3 years of related experience focused on vulnerability analysis and monitoring, threat engineering, risk assessment, and penetration testing
5+ years experience in production security operations, threat hunting, and threat intelligence
5+ demonstrated ability administering and operating security tooling such as Nessus, OSQuery, Splunk, Burpsuite, Nmap, Wireshark, Falco, Tenable, Wiz.io, etc.
3+ years of technical experience supporting cloud operations in Azure/ AWS / GCP
Ability to create custom correlation rules to detect known or suspected malware traffic patterns within security tools
Packet-level knowledge of TCP/IP protocols and network applications and an understanding of TCP/IP routing behaviors
Certifications such as CEH, Splunk, CISSP, Cloud Certs - AWS/GCP/Azure
Understanding of regular expression and query languages
Experience in Information Security with a focus on incident response and security engineering
Experience analyzing events or incidents to triage the issue, find the root cause through log and forensic analysis, and determine security vulnerabilities, attacker exploit techniques, and methods for their remediation.
Experience developing playbooks, run books, solve technical issues, and recognize and identify patterns
Strong knowledge of security standard methodologies, principles, and common security frameworks. Such as MITRE ATT&CK, NIST, ISO 27001, OWASP-Top 10, CIS benchmarks.
Knowledge of TCP/IP, OWASP Top 10, CVSS, Linux, Virtualization, Containers
Good communication, organizational, and problem-solving skills in a dynamic environment
Effective documentation skills, to include technical diagrams and written descriptions
Ability to work independently and as part of a team with professional demeanour.