Senior Analyst - IT Security Operations

ABOUT AMAGI

Amagi is a global leader in cloud-managed services for the Streaming TV and Broadcast TV industry. Amagi enables TV networks and content owners distribute and monetize their content. Amagi’s clients include premium networks and platforms such as NBCU, CBS, PBS, Samsung TV Plus, Redbox, XUMO, Roku, A+E Networks, Viceland TV, MGM, ShortsTV, Yahoo! Finance, PeopleTV, Tastemade, Turner Corporation, Discovery Networks and more.

Amagi pioneered the use of cloud technologies in the broadcast industry, and today manages 300+ channels with deployments in more than 40 countries. Amagi is an advanced tier partner of Amazon Web Services (AWS), and works on the latest cloud technologies that are shaping the media and entertainment industry. Amagi has sales offices in New York, Los Angeles and London, and operations center in New Delhi, and an innovation center in Bangalore. For more information, visit www.amagi.com.

Job role: Executive / Senior Executive- IT Security Operations

Location: Bangalore

Role reporting into: Associate Director IT

Does this role have direct reports? No

Requirements

Ideal a person should have had the below experiences / possess the below abilities to succeed in this role:

●      5+ years of IT security Engineer / SOC Analyst experience

●      Working experience on Administration of Security Devices

o   Endpoint and Server security management (Crowdstrike, EDR preferred)

o   Linux Security

●      Familiarity with Network Vulnerability Assessment & Penetration Testing tools

●      In depth understanding perimeter and network security (Firewalls, WAF, IDS/IPS, VPN, Web Filters)

●      Knowledge and Hands On with data protection tools (DLP, Encryption, Password Management and Access Controls, IDM etc.)

●      Experience in Log monitoring and analysis and other SIEM tools (Sumo Logic, Splunk, ArSight, OSSIM etc.)

●      Experience in Security incident/event management and/or Security Operations Centre (SIEM - SOC)

●      Experience in implementing, maintaining ZTNA (Zero Trust Network Access), ZTAA (Zero Trust Application Access)

●      Working knowledge of standards, frameworks, and regulations (SOC2, ISO 27000 Series, NIST) and driving compliance.

●      Have demonstrated ability in documenting, tracking, and managing security controls across a diverse technology platform.

●      Basic knowledge of CASB (Cloud Access Security broker), DNS, DHCP and Mail Gateways

●      Have proven people management abilities to work with multiple stakeholders / teams.

●      Deep passion and appreciation for evolving security technology and methodology

●      Good learning ability to comprehend evolving security risks and threat landscapes and adapt security practices to suit the depth and breadth of technology platform(s)

●      Good written and oral communication skills to enable effective coordination and implementation across the organization and deliver security awareness trainings

Responsibilities

●      Understand the company’s threat landscape and proactively manage threat hunting initiatives.

●      Investigate, document, and report on information security issues and emerging trends.

●      Manage IT Security Infrastructure

• Perimeter Security (Firewalls, IDS/IPS)
• Enterprise SaaS apps (Gsuite, OneLogin, CrowdStrike, Secpod)
• Security Device Configuration Reviews, Network Security architecture reviews
• Security on third party applications (SSO)

●      IT Infrastructure risk assessment, mitigation, and reporting

●      IT Security Incident investigations

●      DR tests coordination and review

●      Asset inventory review (Hardware & Software) and compliance management

●      Application onboarding vulnerability reviews

●      IT Security Controls validation, review, design and compliance management

●      Metrics data collation and reporting

●      Infrastructure vulnerability scanning and Penetration testing (internal) and engagement with vendors for external VAPT testing cycle, when required.

Education/Qualifications: BE / BTech / MBA / MCA

Preferred Certifications (Not Mandatory): CISSP, CISM, CCNA (Security), MCSP, CCSP, Product specific Security Certifications, Security+