Cyber Security Consultant

July 9, 2021
0 - 0 / year
Urgent
Application ends: September 30, 2021
Apply Now

Job Description

Exp – 5-8 yrs  

Location: Mumbai  

Role: Monitor and investigate cybersecurity events 

  • Direct incident response team while responding to more complex incidents
  • Handle escalations from other members of the incident response team
  • Monitor SIEM and other tools for potential threats, intrusions, or compromises
  • Analyze emails reported as phishing
  • Investigate the functionality, origin, potential impact and contain threats including malware, phishing, and other intrusions
  • Analyze malware in a sandbox environment to understand impact
  • Use forensic tools to understand how malware may have impacted a system
  • Review investigations performed by peers
  • Escalate cybersecurity events according to Cybersecurity Incident Response Plan

Continuous improvement 

  • Review investigations performed by other team members and recommend improvements 
  • Fine tune detection rules 
  • Lead and participate in incident retrospectives 
  • Develop reports on incident trends to share with other Cyber Security Teams 
  • Recommend, prioritize, and implement solutions for process improvement 
  • Recommend solutions to prevent threats observed by CSIRT 
  • Participate in projects to implement new technologies 

Procedure Development, Refinement, and Team Building 

  • Acquire, apply, and share expert knowledge of the business, its products, and processes to incident response procedures 
  • Maintain understanding of the global threat landscape and share it with the rest of the team 
  • Develop incident investigation processes and playbooks 
  • Ensure processes are clearly communicated, understood, and followed 
  • Plan shift schedule 
  • Train and Mentor other CSIRT members to improve their investigation skills 
  • Support tools used in incident response 
  • Train and mentor new team members 
  • Hiring & On-boarding, new talent 

Desired Profile 

Cyber Security Incident Responder, SOC Analyst, Security Analyst , SIEM Analyst , GIAC Certified Incident Handler (GCIH), Certified Information Systems Security Professional (CISSP) Certified Ethical Hacker (CEH), CompTIA Cybersecurity Analyst (CySA+), EC-Council Certified Incident Handler (ECIH) .

Knowledge in tools and techniques used by attackers to gain unauthorized access to systems 

• Prior experience with information security and associated technologies, including boundary protection (e.g. firewalls, proxies, IDS/IPS), endpoint protection, remote access, and security information and event management 

• Demonstrated ability to get things done both independently and in a collaborative, team-oriented environment 

• Skilled in mixed Microsoft and open-source operating system environments 

• Understanding of network protocols 

• Create better solutions through tireless curiosity and innovation stretching beyond your area of expertise,

Related Jobs