ManpowerGroup India
Location
Bangalore | India
Job description
Key Responsibilities: 1. ELK stack in SOC Architecture: I. Lead the integration of ELK stack and security practices into the SOC architecture for the SOC/MDR service. II. Collaborate with development and operations teams to ensure that security is embedded in the architecture. III. Implement security controls, automated testing, and monitoring tools to enhance the security posture of the SOC/MDR service. 2. Security Automation and Vulnerability Management: I. Develop and maintain automated security testing and deployment processes for the SOC/MDR service. II. Identify and manage vulnerabilities. III. Implement security patches and updates to maintain a secure SOC/MDR environment. IV. Develop and maintain security orchestration and workflow tools like N8N, Shuffler etc. 3. Incident Response and Forensics: I. Participate in incident response activities, including analysis and resolution of security incidents. II. Perform digital forensics and incident handling to investigate and manage security breaches. 4. Security Awareness and Training: I. Provide security awareness training and guidance to SOC/MDR teams. II. Promote a security-first mindset and culture within the SOC/MDR service. 5. Compliance and Audit Support: I. Assist in compliance efforts related to security standards and regulations for the SOC/MDR service. II. Support internal and external audits by providing security documentation and evidence. 6. Research and Integration of New Technologies: Terraeagle Technologies Pvt Ltd India | US | Bahrain I. Carry out research to identify and evaluate new technologies relevant to the SOC/MDR service. II. Integrate new technologies into the SOC/MDR architecture to enhance security capabilities. 7. ELK/Graylog Stack Implementation: I. Implement and manage ELK/Graylog stack components for log management and analysis within the SOC/MDR environment. II. Configure and optimize ELK/Graylog stack to meet the security and operational requirements of the SOC/MDR service. 8. Continuous Improvement and Automation: I. Advocate for "secure by design" and "shift left" principles in the development and deployment processes. II. Drive automation initiatives to enhance security through continuous integration/deployment pipelines. III. Challenge existing processes and norms to improve security posture through innovative automation workflows.
9. Technical Expertise and Research: I. Stay current on security risks and threats and incorporate best practices into the SOC/MDR environment. II. Build and maintain container-based/Kubernetes-based workloads with a focus on container security threats and best practices. III. Configure and maintain cloud networking and security controls, such as SSL certificate management, API gateway, and Web Application Firewall (WAF), to align with security policies and standards. Qualifications: 1. Bachelor's degree in Computer Science, Information Technology, or a related field. 2. 7 to 11 of experience in DevSecOps. 3. Strong understanding of DevSecOps principles and practices. 4. Knowledge of security tools and technologies, such as vulnerability scanners, intrusion detection systems, and ELK stack. 5. Experience with cloud platforms (e.g., AWS, Azure, GCP), terraform, cloud formation and containerization technologies (e.g., Docker, Kubernetes). 6. Expertise in regular expressions and familiarity with scripting languages (e.g., Python, Bash) for automation. 7. Security certifications (e.g., CISSP, CEH, CompTIA Security+) are a plus. 8. Prior system administrator (Linux/Windows) experience preferred. 9. Experience configuring secure IAM, such as least privilege, zero trust, privileged identity management. 10.Stay current on cloud security policies, standards, regulations, and best practices. 11.Proficiency in working with APIs and webhooks for integrating security tools and platforms.Job tags
Salary
