Sr . Cyber Security Specialist

Location

Bangalore | India

Job description

• The Senior Cyber Security Specialist is responsible for activities relating to monitoring and responding to security events
• The Senior SOC analyst receives, researches, triages and documents all security events and alerts as they are received
• This individual supports multiple security-related platforms and technologies, interfacing with others within the IT organization, as well as other internal business units and external customers/partners
• Events will be generated from endpoints, networks, security information and event management (SIEM) systems, threat intelligence platforms, employees, third-parties and other sources
• The Senior Cyber Security Specialist is responsible for activities relating to monitoring and responding to security reports to the Manager Cybersecurity and is a thought leader of the SOC team
• This role must display an in-depth understanding of new trends and technologies related to cybersecurity and contribute to the company cybersecurity strategy and roadmap

Essential Job Duties

• As an active member of the team, monitor and process response for security events on a 24x7 basis.
• Plan and execute regular incident response and postmortem exercises, with a focus on creating measurable benchmarks to show progress (or deficiencies requiring additional attention).
• Stay current with and remain knowledgeable about new threats. Analyze attacker tactics, techniques, and procedures (TTPs) from security events across a large heterogeneous network of security devices and end-user systems.
• Participate in threat modeling collaboration with other members of the security team.
• Leverage automation and orchestration solutions to automate repetitive tasks.
• Assist with incident response as events are escalated, including triage, remediation, and documentation.
• Aid in threat and vulnerability research across event data collected by systems.
• Investigate and document events to aid incident responders, managers and other SOC team members on security issues and the emergence of new threats.
• Work alongside other security team members to hunt for and identify security issues generated from the network, including third-party relationships.
• Share information as directed with other team members and ISACs.
• Seek opportunities to drive efficiencies.
• Manage security event investigations, partnering with other departments (eg, IT) as needed.
• Evaluate SOC policies and procedures and recommend updates to management as appropriate.
• Adhere to service level agreements (SLAs), metrics and business scorecard obligations for ticket handling of security incidents and events.
• Partner with the security engineering team to improve tool usage and workflow, as well as with the advanced threats and assessment team to mature monitoring and response capabilities.
• Leverage knowledge in multiple security disciplines, such as Windows, Unix, Linux, data loss prevention (DLP), endpoint controls, databases, wireless security, and data networking, to offer global solutions for a complex heterogeneous environment.
• Maintain working knowledge of advanced threat detection as the industry evolves.
• Perform other duties as assigned.

Skills and Experience

• 7+ years of information security with 4+ years of experience in SOC related activities.
• Experience working in a 24x7 operational environment, with geographic disparity preferred.
• Experience driving measurable improvement in monitoring and response capabilities at scale.
• Experience working with SIEM systems, threat intelligence platforms, security automation and orchestration solutions, intrusion detection and prevention systems (IDS/IPS), file integrity monitoring (FIM), DLP and other network and system monitoring tools.
• Knowledge of a variety of Internet protocols.
• Track record of acting with integrity, taking pride in work, seeking to excel, being curious and adaptable, and communicating effectively.
• Working knowledge/experience with network systems, security principles, applications and risk and compliance initiatives such as Gramm-Leach Bliley Act (GLBA), Payment Card Industry (PCI), Health Information Portability and Accountability Ace (HIPAA), Sarbanes-Oxley Act (SOX) and the General Data Protection Regulation (GDPR).

Additional Qualifications

• Demonstrates highly effective communications skills, with ability to influence business units.
• Has an analytical and problem-solving mindset.
• Is highly organized and efficient.
• Leverages strategic and tactical thinking.
• Works calmly under pressure and with tight deadlines.
• Demonstrates effective decision-making skills.
• Is highly trustworthy; leads by example.

Educational Requirements

• Bachelor s degree in computer science/Engineering or related field.

Certification Requirements

• Required security certification such as SANS/ GIAC, or Certified Information Systems Security Professional (CISSP), or equivalent.

Job tags

Salary