senior security analyst in bangalore

randstad india
position type
apply now

job details

bangalore, karnataka
Information Technology
position type
reference number
randstad india
apply now

job description

?� Hands on experience with McAfee ePO, ESM, and Palo Alto Firewalls
� Analyze reports to understand threat campaign techniques and lateral movements and extract indicators of compromise (IOCs).
� Must be able to analyze SIEM logs and correlate logs with expected system behavior
� Investigate, collaborate and report on root-cause-analysis of malware attacks
� Prepare reports that document security breach attempts
� Ability to analyze and determine the applicability of data, to draw conclusions and make appropriate recommendations;
� Ability to communicate effectively in oral and written expression
� Ensuring endpoints and networks are free of breaches by proactively analyzing the logs from critical devices.
� Review, collaborate and recommend infrastructure security changes to reduce risks
� Collaborate and recommend security enhancements to management or senior IT staff
� Research the latest information technology (IT) security trends and report breaches alerted by vendors
� Ensures authorized access by investigating improper access and reporting violations
� Develop security vulnerability patterns, reports and publish periodically.
� Support compliance requirements and related efforts as needed

?Manufacturing Unit
Part of Core Technology Team

Client Introduction
?has developed a revolutionary on-site primary (base load) power generation system called a Energy Server based on proprietary fuel cell technology that provides a more reliable, cleaner and cost-effective alternative to the traditional electric power grid.


?security and "macfee epo"


?� Required SIEM: McAfee ESM and ePO
� Experience in analyzing logs of PAN and Cisco routers, switches, VPN, Palo Alto Firewall, FireEye, McAfee
� Preferred client security management: Tanium, Splunk, Tenable, Nessus, Qualys, Qradar
� Preferred: Additional IT experience as a programmer, system administrator or network engineer, proficient in Windows environments, Linux and Mac a plus
� Knowledge of the principles, and best practives of information security
� Experience in datacenter, remote site and cloud architectures
� Information security certifications is a plus
� Demonstrated ability to work effectively in a collaborative team environment as an individual contributor.
� The ability to provide support after normal business hours, as needed.