Security consultant

Posted: July 7, 2021, 4:42 a.m. - Full Time - Bangalore

At least 5 years’ experience on SOC/CERT/CSIRT team

•Incidence response experience (at least 1 year) :
•Phish, SCAM and spear phishing incident investigation
•Fraud investigation
•Compromised account investigation
•Malware investigation
•Intrusion incident investigation
•Webshell detection and response
•Experience with Azure and O365 (at least 1 year)
•Experience in a big worldwide corporation
•Fluent in English
•Knowledge of 1 of the following SIEM : Splunk / Qradar
•Experience with Crowdstrike Falcon EDR
•Flexible working hours (We need sometimes to handle incident during the weekend)
•Python for API usage
•PowerShell for data triage on Windows environment

Nice to have:

•GIAC certification like GCFA, GREM or GNFA
•Experience with Resilient SOAR
•Experience with Qualys
•Experience with Trend