US Citizen
Green Card
EAD (OPT/CPT/GC/H4)
H1B Work Permit
Corp-Corp
W2-Permanent
W2-Contract
Contract to Hire
Consulting/Contract
UG :- - Not Required
PG :- - Not Required
No of position :- ( 1 )
Post :- 29th Dec 2023
• Monitoring client security infrastructure, identifying and reporting real time attacks and vulnerabilities on the client network.
• Identification of incidents and subsequent analysis and investigation to determine their severity and the response required.
• Perform deep dive analysis for escalated incidents, forensic evidence collection
• Help L1 and L2 team for triage incidents
• High level investigation which includes but not limited to log analysis/forensic evidence collection and analysis
• Collection of necessary logs that could help in the incident containment and security investigation and resolution
• Triage complex threats and alerts.
• Undertake first stages of false positive and false negative analysis
• Fine tune policies for reducing false positives
• Integrate new devices to Splunk
• Run various queries to generate the required reports
• Work on new use case integration
• Understand the structure and the meaning of logs from different log sources such as FW, IDS, Windows DC, Cisco appliances, AV and antimalware software, email security etc.
• Understand the subject of Carbon Black alarms and perform deeper analysis
• Should have ServiceNow and other ticketing tools experience
• Should be able to fetch various Splunk and ServiceNow reports.
• Should be able to have better coordination with Splunk vendor and other stake holders.