Qualifications:
- BE/ Tech/ M.Tech/ MSc/ MCA qualification or equivalent
- At least one of the following certifications - GCFA, GCFE, CISP, CISSP, CCNP, CCIE Security, CEH would be preferred
Experience:
- Minimum of 5 years of experience in Cybersecurity
- At least 2 years of working in the SOC
- Proficient in Incident Management and Response
- In-depth knowledge of security concepts such as cyber-attacks and techniques, threat vectors, risk management, incident management
- Responsible for working in a 24x7 Security Operation centre (SOC)
- Provide analysis and trending of security log data from a large number of heterogeneous security devices
- Provide threat and vulnerability analysis as well as security advisory services
- Analyse and respond to previously undisclosed software and hardware vulnerabilities
- Investigate, document, and report on information security issues and emerging trends
- Coordinate with Intel analysts on open source activities impacting SLTT governments
- Integrate and share information with other analysts and other teams;
- Other tasks and responsibilities as assigned
- Experience with scripting and programming with tools like Perl, Python
- Knowledge of various operating system flavours including but not limited to Windows, Linux, Unix
- Knowledge of TCP/IP Protocols, network analysis, and network/security applications;
- Knowledge of common Internet protocols and applications
- Communicate effectively by contributing significantly to the development and delivery of a variety of written and visual documents for diverse audiences
- Knowledge about various tools like – SIEM, SSL, Packet Analysis, HIPS/NIPS, Network Monitoring tools, Remedy, Service Now Ticketing Toolset Web Security, AV, UBEA, Advanced SOC
Learn more about our Managed Detection And Response Services.