Required Qualifications:
• BE/ B.Tech/ M.Tech/ MSc/ MCA qualification or equivalent.
• At least one of the following certifications – GCFA, GCFE, CISP, CISSP, CCNP, CCIE Security, CEH would be preferred.
Experience:
• Minimum of 5 years of experience in Cyber security and at least 2 years of working in the SOC.
• Proficient in Incident Management and Response In-depth knowledge of security concepts such as cyber-attacks and techniques, threat vectors, risk management, incident management etc.
• Responsible for working in a 24×7 Security Operation centre (SOC) environment.
• Provide analysis and trending of security log data from a large number of heterogeneous security devices.
• Provide threat and vulnerability analysis as well as security advisory services.
• Analyse and respond to previously undisclosed software and hardware vulnerabilities.
• Investigate, document, and report on information security issues and emerging trends.
• Coordinate with Intel analysts on open source activities impacting SLTT governments.
• Integrate and share information with other analysts and other teams.
• Experience with scripting and programming with tools like Perl, Python.
• Knowledge of various operating system flavours including but not limited to Windows,Linux,Unix Knowledge of TCP/IP Protocols, network analysis, and network/security applications.
• Knowledge of common Internet protocols and applications.
• Communicate effectively by contributing significantly to the development and delivery of a variety of written and visual documents for diverse audiences.
• Knowledge about various tools like – SIEM, SSL, Packet Analysis, HIPS/NIPS, Network Monitoring tools, Remedy, Service Now Ticketing Toolset Web Security, AV, UBEA, Advanced SOC.