Vacancy expired!
- Role and Responsibilities
- Implementation and support for solutions such as Crowdstrike EDR, PhishME, CISCO IronPort, Palo Alto Firewalls, IDS/IPS systems, etc, Threat Intelligence platforms like Anomali, SOAR, Azure resources, ServiceNow integration with Automation tools like Demisto
- Configure playbooks and manage Security Orchestration, Automation, and Response (SOAR).
- Create and run search queries in SIEM tool to help with identifying and troubleshooting security issues.
- Utilize tools (e.g., Wireshark, Nmap, PCap, etc.) to identify and map devices on the network.
- Skills
- Experience working with Automation and Orchestration tools like Demisto, ServiveNow Orchestration Module etc
- Hands-on experience with Scripting for Security usecase and SOAR platform
- Have atleast 5+ years of experience as a Security or Cyber Analyst.
- Have 3+ year of security operations experience
- Experience working with IBM QRadar SIEM OR any other SIEM Tool
- Coding Experience like Python, Java, C Language
- Have experience developing automation/orchestration and processes for improvements to daily security operations.
- Have experience with Azure services related to computing, storage, networking & content delivery, as well as Security, Identity & Compliance
- Are passionate about working on systems that are highly reliable, maintainable, and scalable
- Knowledge of automation use cases in Cyber Security and Identity and Access Management Services
- Self-motivated, quick learner, passionate, and diligent by nature.
- Experienced in leading a team, by leveraging each member’s strength to attain common business goals through motivating, training and mentoring.
Vacancy expired!