Job Description 4+ years SOC experience working with leading SIEM software, Vulnerability Management, IDS/IPS software and in roles encompassing technical security role(s) Experience with Threat Intelligence, Security Incident Event Management, Incident Response and vulnerability management Experience with Rapid7 InsightIDR , Qradar, Splunk Enterprise Security solutions or any equivalent solution Experience with QualysGuard, Nessus, Rapid7 VM vulnerability assessment tools Familiarity with Unix/Linux, IP Tables, Windows Security, Routing and Access Control Devices, TCP/IP networking, network security and log management Understand the underlying protocols and data used as the basis for security monitoring services Understanding of Networking Protocols, Operating Systems, Application Architecture etc. Ability to do threat hunt and create data models across different logsets Knowledge of application layer attacks not limited to OWASP top 10 Incident response and ability to keep up with changing Threat landscape TTPâS, Ransomware etc. Security certifications such as CEH, Security+, GCIH, SIEM vendor certifications, etc. are a definite plus Knowledge on Cyber kill chain and Mitre Attack framework Proficient in new and emerging technologies, IT concepts, strategies and methodologies, as well as security aspects of multiple platforms, operating systems, software, communications and network protocols. Experience in analysis, system design, documentation, testing, implementation and support for highly complex security operations and processes.
Endpoint Security; Cyber Security;
Experience In Years:2 to 4 years
Roles & Responsibilities
Security Support Resource Skill Set required:
- Very strong written and verbal communication skills
- Strong mentoring skills to train additional team members
- Certifications like CEH, CCSK, CCSP , Azure Certified Cloud Security Engineer AZ-500 will be an advantage Location:- Chennai Timings : Rotational shift (24x5)