Security analyst - vapt
Posted: April 5, 2021, 8:47 a.m. - Full Time - Ahmedabad3 to 5 years of experienced person in the field of information and cyber security with primary responsibility of assessment of technical controls, incident response and investigation on need basis. The candidate will be part of information and cyber security team and the job involves continuous coordination with IT team members and various departments with below job role:
- Technical assessment of cyber security infrastructure like IPS/IDS, Advance threat prevention with endpoint detection and response, Identity and access management tools, email security solution with DMARC
- Log analysis and investigations
- Participate in conducting internal audit and assessment of implemented information and cyber security controls, business processes at Head office, Ahmedabad and Vadodara data centers, branches, Report drafting and submission
- Help IT team members for effective incident response and investigation in case of any event/ incident alert triggered.
- Participation and contribution during external ISO and IS audits
- Auditing on privilege identity management, email security solution with DMARC,
The required skill set and competency for this job role is mentioned below: - Knowledge of technical of information and cyber security solutions like IDS/IPS, firewall, router, antivirus, privilege identity management solution etc. Minimum 3 to 5 years of hands-on experience is preferable - Sound technical knowledge of log collection, analysis, preservation and investigation - Working knowledge of cyber kill chain, incident response, malware analysis - Sound knowledge of technical threats and vulnerability management - Knowledge of operating system, network and database security on windows and non-windows platform with its assessment - Working knowledge and auditing experience on various technical compliance requirements like Data masking, encryption and data leakage prevention - Knowledge of evaluating configuration hardening requirements/ benchmarks like CIS, SANS etc. - Technically sound with information and cyber incident response, well versed with manual and automatic incident response mechanisms
Skillsets/competency required: - Cyber security certifications like cyber incident response / forensic - Network security certification like CCNA, N+
Attributes required: - Good documentation and reporting skills - Good team player - Good communication skills and presentation abilities