• US Citizen

• Green Card

• EAD (OPT/CPT/GC/H4)

• H1B Work Permit

• Corp-Corp

• W2-Permanent

• W2-Contract

• Contract to Hire

• Consulting/Contract

• UG :- - Not Required

• PG :- - Not Required

• No of position :- ( 1 )

• Post :- 28th Aug 2024

Expertise in SIEM & SOAR implementation by understanding the customer environment.

2. Team management with good Information security technical expertise and ability to frontend customer interactions

3. Experience in Security Incident Response Lifecycle

4. Experience in identifying & enabling SIEM & SOAR functionality using Splunk.

5. Experience in defining SOC monitoring use cases and operationalizing them through SOPs, and SIEM based alerts / reports.

6. Should understand the functioning of Security Technologies including EDR, Firewalls, Intrusion Prevention, Packet Capture tools, Remote access technologies etc.

7. Security incident investigations using Next-Gen AV/ EDR solutions such as CrowdStrike, MS Defender , etc

8. Experience in understanding and interpreting Threat intelligence from various external sources including validation of related IOCs in customer environment.

9. Should have good conceptual understanding of Windows, Linux operating systems & Networking

? TCP/IP Protocol Suite

10. Understanding of common network services (web, mail, DNS, FTP, etc.), network vulnerabilities, and network attack patterns

Possess knowledge and experience in Threat Ecosystem, remediating Malware, Rootkits and Botnets

12. Strong analytical and problem solving skills

13. Good organization skills to ensure coordination and smooth hand-offs between onshore & offshore/nearshore teams

14. Strong communication (verbal and written) and interpersonal skills

15. Project Management experience with an ability to mentor the team and meet delivery objectives