Security Analyst - Cyber Defense Center - IT Firm

Title : Exciting opportunity for Security Analyst - Cyber Defense Center for our client organization.

Location : Mumbai.

Category : IT & Systems.

Industry : IT, IT- Hardware and Networking, IT-Software/Software Services.

Functional Area : IT.

Salary : 15-16 Lacs.

Experience : 5-8 years.

Education : Degree - IT or Security.

Work timings: Monday - Friday 12.30 p.m. to 9.30 pm

8.30 p.m. to 5.30 a.m.

Rotational Shift

Job Description :

Roles & Responsibilities :

- Incumbent will work to safely acquire and preserve the integrity of cyber security data required for incident analysis to help determine the technical/operational impact, root cause(s), scope and nature of the incident.

- Responsible to detect emerging threats based upon analysis, data feeds and sources (internal & external intelligence sources).

- Applicant must be capable to active Cyber Threat hunting & provide recommendations to optimize cyber security based on threat hunting discoveries.

- Responsible to participate, routinely develop and update incident response playbooks to ensure response activities align with best practices, minimize gaps in response and provide comprehensive mitigation of threats.

- Candidate should be familiar with using data visualization tools (e.g. Maltego) and penetration testing tools (e.g. Metasploit).

- Incumbent should have System admin skills (Linux / Windows); Programming / Scripting Skills (Power Shell or Python).

- Incumbent should have solid understanding of SIEM technologies.

Knowledge and Skills Requirements :

- Should have 5 to 8 years of hands-on work experience working in a Security Operating Centre (SOC).

- Incumbent should have knowledge of computer and network forensics investigations, malware analysis.

- Candidate should be proficient in OSCP, GSEC, GISF, GCED, CEH.

- Team player with good interpersonal skills.

- Organized and methodical.

- Good communication skills, both orally and in writing.

Other Requirements :

- Experience in SIEM investigations.

- Thorough knowledge of network protocols/technologies (e.g., TCP/IP, HTTP/HTTPS, REST).

- Experience with security assessment tools, including Wireshark, Metasploit, Nexpose.

- Expert-level experience and very detailed technical knowledge in at least three of the following areas: general information security; security engineering; network architecture; authentication and security protocols; applied cryptography; common communication protocols; Microsoft Active Directory, exploit automation platforms.