senior security analyst in bangalore

posted
contact
randstad india
position type
permanent
apply now

job details

posted
location
bangalore, karnataka
function
Information Technology
position type
permanent
reference number
928213
contact
randstad india
apply now

job description

?� Hands on experience with McAfee ePO, ESM, and Palo Alto Firewalls
� Analyze reports to understand threat campaign techniques and lateral movements and extract indicators of compromise (IOCs).
� Must be able to analyze SIEM logs and correlate logs with expected system behavior
� Investigate, collaborate and report on root-cause-analysis of malware attacks
� Prepare reports that document security breach attempts
� Ability to analyze and determine the applicability of data, to draw conclusions and make appropriate recommendations;
� Ability to communicate effectively in oral and written expression
� Ensuring endpoints and networks are free of breaches by proactively analyzing the logs from critical devices.
� Review, collaborate and recommend infrastructure security changes to reduce risks
� Collaborate and recommend security enhancements to management or senior IT staff
� Research the latest information technology (IT) security trends and report breaches alerted by vendors
� Ensures authorized access by investigating improper access and reporting violations
� Develop security vulnerability patterns, reports and publish periodically.
� Support compliance requirements and related efforts as needed


Benefits
?Manufacturing Unit
Part of Core Technology Team

Client Introduction
?has developed a revolutionary on-site primary (base load) power generation system called a Energy Server based on proprietary fuel cell technology that provides a more reliable, cleaner and cost-effective alternative to the traditional electric power grid.

skills

?security and "macfee epo"

qualification

?� Required SIEM: McAfee ESM and ePO
� Experience in analyzing logs of PAN and Cisco routers, switches, VPN, Palo Alto Firewall, FireEye, McAfee
� Preferred client security management: Tanium, Splunk, Tenable, Nessus, Qualys, Qradar
� Preferred: Additional IT experience as a programmer, system administrator or network engineer, proficient in Windows environments, Linux and Mac a plus
� Knowledge of the principles, and best practives of information security
� Experience in datacenter, remote site and cloud architectures
� Information security certifications is a plus
� Demonstrated ability to work effectively in a collaborative team environment as an individual contributor.
� The ability to provide support after normal business hours, as needed.