Sr Technical Lead-Cybersecurity
INDIA - BENGALURU - BIRLASOFT GLOBAL OFFICE, IN
Birlasoft
At Birlasoft we combine the power of domain, enterprise, and digital technologies to reimagine business potential. Surpassing expectations, breaking convention!Area(s) of responsibility
Cyber Security Team lead
Job Responsibilities:
Incident and Data breach handling experience (example Ransomware, Malware attack etc.)
Understanding and defending knowledge in Cyber Security (Ex. Blue Teaming, MITRE ATT&CK Matix, Cyber Kill Chain, NIST CSF etc.)
Alerts identification (example identify false positive) and incident triaging
Understanding about Security Incident Event Management (SIEM) and SOC Operations
Monitor, detect and respond to threats in customer environments using our SOC platform
Tune threat detection for both general and specific customer environments to minimize false positive and amplify productivity
Understanding on Data Encryption lifecycle including PKI lifecycle management, SSL Certificate management
Understanding and implementing knowledge on EDR Platform (Ex. Crowdstrike)
Understanding and implementing knowledge on Cloud Proxy (Ex. Zscaler)
Implements, manages, and monitors security for resources in Azure, multi-cloud, and hybrid environments as part of an end-to-end infrastructure
Maintain & formulate Standard Operating Procedures for SOC Security Services
Maintain proficiency by following the latest trends and developments in cybersecurity
Report presentation to stakeholders
Be a Team player and Team handling
Develop detection use-cases using EDR and SIEM technology
Maintain proficiency by following the latest trends and developments in cybersecurity
Act as an escalation resource for Open Systems SOC Security Analysts who are triaging security events and observations to identify potential threats
Run regular reports and semi-automated threat hunts – review and analyze results or work as Threat Hunter
Use data analysis techniques to identify potential threats
Create reports for customers and internal operational use on an ongoing basis
Broaden coverage of detection by identifying opportunities to acquire, ingest and analyze Data and logs from additional sources and technologies
Help extend malware analysis capability, execute malware triage
Create and update documentation to support ongoing operations
Collaborates with VM Analysts to understand emerging threats and vulnerabilities.
Conducts in-depth research on new and evolving cyber threats, vulnerabilities, and attack techniques.
Provides insights to the VM team to enhance their ability to detect and respond to emerging threats.
Collaborates with Security Operations Center (SOC) Analyst to monitor and analyze security alerts and events.
* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰
Tags: Azure Certificate management Cloud CrowdStrike Cyber Kill Chain EDR Encryption Malware MITRE ATT&CK NIST PKI SIEM SOC Threat detection Vulnerabilities
Perks/benefits: Team events
More jobs like this
Explore more career opportunities
Find even more open roles below ordered by popularity of job title or skills/products/technologies used.