Role: Cyber Security Analyst- L1
Technology Stack: Cyber Security / information Security , SIEM ( Qradar) , CEH ( Added advantage)
As a Security Analyst, the incumbent will be a part of the Cybersecurity Operations Center team that is focused on creating detection against cybersecurity threats - current and future.
We are seeking a combined skill set of security analyst and security engineering experience.
The primary role will be to improve our detection and incident response platforms & processes by using knowledge and experience of log analysis, threat actor tactics, techniques and procedures and co-working with the Groups cross-technical teams (viz. Network, Datacenter, IT Standards) to develop customized solutions or indicators in both our SIEM and IT infrastructure (log) sources to improve our cyber defense actions and strategies.
Mandatory Skills:
Experience of working on an Incident Response or CSIRT team.
Knowledge of Cyber Threat Intelligence, Ability to analyze reports, information on threat actors and emerging attack vectors
Experience with SIEM tools/applications (Arcsight, Qradar, Similar)
Experience with tuning and optimization of SIEM rule sets, use cases (Ability to create and improve SIEM rules)
Knowledge of Security Orchestration
Knowledge of networks and security concepts viz. topology, protocols, components and principles
Knowledge of network traffic analysis methods and tools (Open source or Enterprise)
Knowledge of system and application security threats and vulnerabilities
Experience with a log aggregation query language (e.g. Splunk, SumoLogic,)
Understanding of cyberattack stages (e.g. reconnaissance, scanning, enumeration, gaining/maintaining access, escalation of privileges, network exploitation, covering tracks etc.)
Endpoint and network intrusion detection techniques for malware based on textual or binary patterns (YARA, Snort, Suricata, Sysmon, Similar)
Desired Skills:
Bachelor / Masters degree in a technical discipline with 1-3 years relevant experience in Information Security specifically the areas listed above
Relevant certifications - CEH, CISSP, Others
Passionate to work in Cyber Security
Willing to learn in a fast-paced environment
Excellent written and oral communication skills, ability to work with cross-cultural/global teams
- Good English language skills
Keyskills: siem cyber security qradar information security
We at Epicenter are one of India's Leading Customer Contact Centre’s providing Voice and Non Voice Services in the areas of Collections, Sales and Customer ServiceCompany URL: www.epicentertechnology.comJob Location: Bhayander West