Ameyash Solutions
Location
Pune | India
Job description
Main aim of job (in brief no duties and responsibilities)
To proactively monitor, analyze, report the IT security threats for the Brose Group and to avoid/mitigate any possible business risks. Act as a technical squad lead/SME for internal SOC functions which includes SIEM, vulnerability management, security awareness, email security, Cloud security and incident response areas. Build and maintain quality relationship between the Customer and peer teams around the globe and be available for 24*7 on-call support
Specific duties and responsibilities
1. SIEM - Work on SIEM (Splunk, Exabeam, etc.) implementation, integration,
continues Monitoring, and risk mitigation.
2. Incident response activities - Perform Level 3 security incident response activities in Security operation center (SOC) environment and develop new IT security use cases, policies for incident detection, intrusion analysis to minimize the operational and organizational impact.
3. Threat Intelligence - Maintain heightened awareness of current security vulnerabilities, attacks, and mitigation techniques and leverage various threat intelligence sources/capabilities to proactively communicate to management on findings applicable to Brose environment and enable intelligence driven response.
4. Threat hunting - Perform analysis of logs generated files from different devices and environments, and identify indicator of security threats by analyzing web, system, and security logs.
5. VAPT Skills - Conduct regular security tests of application, web services, network, and other devices to ensure compliance with security policies. Also, leverage white hacking techniques for conducting Cyber-attacks on systems and application.
6. Cloud security - Support Cloud security tools and technologies like MS Azure, AWS, etc. Also, work on implement recommendations in O365 and Azure AD secure score areas.
7. Email and Web security - Responsible for Email security and Web proxy management
8. Experience working in a blue team capacity with red/purple team knowledge.
9. Forensic analysis – Perform forensic analysis on memory, disk and other system and network artifacts to identify the indicators of compromise (IOCs).
10. Assist in planning, research and designing security architectures, disaster recovery plans etc. Also, work on IT security best practices (Policies, SOP's, Playbooks, Audits, etc.).
Work experience:
Graduation in Computer Engineering
8-10 years
Specialized knowledge and skills
Professional certifications like CEH, CISSP, CCSP, OSCP, CHFI, Certified Security Analyst (CSA), ECIH, etc.
Understanding of complete IT security landscape, security architecture, and strong knowledge of security fundamentals including OS, EDR solution, perimeter security, malware defense, advanced threats protection, Email security, Cloud security, Forensic analysis, strong conceptual knowledge on encryption techniques, Mobile device security, OWASP etc.
Job tags
Salary
