Strong understanding on the operations of the following platforms :-
SIEM (Qradar/Splunk)-WAF (e.g. Imperva, Radware)-
Proxy (e.g. forcepoint/Symantec/Zscaler)-
Mail Gateways (e.g. Symantec/Mcafee)-
Anti-Virus (e.g. Symantec/Mcafee)-
EDR- sSecurity Operations
Experience:The candidate is required to have deep.
Technical knowledge in carrying out security monitoring with the following areas :-
Monitor console for alerts and carry out alert reviews within SLA Security incident reviews and investigations for scenarios/alerts such as (illustrative)
Phishing-MalwareRansomware- DDOS/DOS attacks- Remote scans and remote access
Data leak/data exfiltration- Privilege escalations- Anomalous file behaviour- Execute response actions (as per standard playbooks) such as system quarantines, suggested changes to device configurations, update patches, blocking IP etc.
Depending on the nature of incident and threat exposure
Contribute to tuning of configurations/use cases on security devices based on false positives/true positives noted during incident reviews
Escalate tickets for forensic investigations in the event of cases such as data breaches, ransomware, malware
Designs periodic dashboards pertaining to incidents, remediation and suggests updates to incident response playbooks and guides the security device teams for enhanced security posture.
Services Specific Experience:-
2 Cloud Security Configurations- Sales support Skills & Project Management
The candidate is expected to have the following skills :
Creation of project codes for time charging and expenses
Staffing of projects
Identification of resources available from resource pool Management project on ground and deliver areas of project allocated
Tracking time charged on projects
Oversee activities and work with project team members on a hands-on model to ensure quality delivery
Be the first point for client for status update meetings and project escalations
Build project presentations and audit reports
Team development :-
Build excellent and simplified training materials to train client teams and Junior team members
Conduct knowledge sharing sessions for the teams below them on a monthlyKey.
Soft skills and other requirements :-
The candidate is expected to have excellent analytical skills and report writing skills to ensure that deliverables for all assignments are well accepted by the clients.
The candidate is also expected to have excellent presentation making skills to ensure that report summaries are made into succinct theme-based presentations to senior management
.The candidate may be required to travel for short to long term assignments depending on client requirements.
Must have been in a client-facing role in addition to a technical role.
Must have managed mid-level stakeholders at client (VP level, CISO, and Audit leads)
Your dream job isn’t listed at the moment?
No need to check every day if a perfect position opened up,
sign up to find out about new openings!