Job Description:
Work Mode: Work From Office (WFO) & 24/7 Support
Technical Skills:
- Extensive experience in Security Operations Center (24×7).
- Hands-on experience in Threat Analysis.
- Profound knowledge of SIEM (Security Information and Event Management) tools such as Splunk for monitoring real-time security events.
- Experience in various log collection and monitoring within SIEM tools.
- Proficiency in investigating and creating use cases for security threats.
- Ability to analyze security alerts and escalate incidents for further investigation.
- Familiarity with Cybersecurity threat analysis and the MITRE framework.
- Experience in correlating various security events.
- Strong analysis skills in real-time attacks and vulnerabilities.
- Proficiency in analyzing Common Vulnerabilities and Exposures (CVEs) for early warnings.
- Knowledge of Vulnerability Management.
- Experience in System Hardening and establishing Minimum Baseline Security Standards.
- Understanding of TCP/IP, computer networking, routing, and switching.
- Familiarity with Intrusion Detection Systems (IDS)/Intrusion Prevention Systems (IPS) and Incident Management.
- Knowledge of Firewall and intrusion detection/prevention protocols.
- Familiarity with Windows, UNIX, and Linux operating systems.
- Understanding of Anti-virus and anti-malware technologies.
More Information
- Experience 2-5 Years