Security consultant

Posted: July 7, 2021, 4:42 a.m. - Full Time - Bangalore

At least 5 years’ experience on SOC/CERT/CSIRT team

•Incidence response experience (at least 1 year) :
•Phish, SCAM and spear phishing incident investigation
•Fraud investigation
•Compromised account investigation
•Malware investigation
•Intrusion incident investigation
•Webshell detection and response
•Experience with Azure and O365 (at least 1 year)
•Experience in a big worldwide corporation
•Fluent in English
•Knowledge of 1 of the following SIEM : Splunk / Qradar
•Experience with Crowdstrike Falcon EDR
•Flexible working hours (We need sometimes to handle incident during the weekend)
•Scripting;
•Python for API usage
•PowerShell for data triage on Windows environment

Nice to have:

•GIAC certification like GCFA, GREM or GNFA
•Experience with Resilient SOAR
•Experience with Qualys
•Experience with Trend