• US Citizen

• Green Card

• EAD (OPT/CPT/GC/H4)

• H1B Work Permit

• Corp-Corp

• W2-Permanent

• W2-Contract

• Contract to Hire

• Consulting/Contract

• UG :- - Not Required

• PG :- - Not Required

• No of position :- ( 1 )

• Post :- 29th Dec 2023

• Monitoring client security infrastructure, identifying and reporting real time attacks and vulnerabilities on the client network.

• Identification of incidents and subsequent analysis and investigation to determine their severity and the response required.

• Perform deep dive analysis for escalated incidents, forensic evidence collection

• Help L1 and L2 team for triage incidents

• High level investigation which includes but not limited to log analysis/forensic evidence collection and analysis

• Collection of necessary logs that could help in the incident containment and security investigation and resolution

• Triage complex threats and alerts.

• Undertake first stages of false positive and false negative analysis

• Fine tune policies for reducing false positives

• Integrate new devices to Splunk

• Run various queries to generate the required reports

• Work on new use case integration

• Understand the structure and the meaning of logs from different log sources such as FW, IDS, Windows DC, Cisco appliances, AV and antimalware software, email security etc.

• Understand the subject of Carbon Black alarms and perform deeper analysis

• Should have ServiceNow and other ticketing tools experience

• Should be able to fetch various Splunk and ServiceNow reports.

• Should be able to have better coordination with Splunk vendor and other stake holders.