Ahmedabad
August 12, 2020
Acts as the primary security operations analyst for the Computer Emergency Response Team (CERT).
Monitor, analyze, investigate SIEM alerts with other recorded activity information to immediately detect unauthorized, suspicious activity, most importantly intrusion by unauthorized parties and the execution of unauthorized software
Recognize potential, successful, and unsuccessful intrusion attempts and compose thorough reviews and analysis of relevant event detail and summary information
Integrates and interfaces information security monitoring systems with physical security monitoring systems to increase management visibility of the current situation, and increase the overall level of security
Fine-tunes the existing security monitoring systems so that false positives and false negatives are minimized, and so that both accurate and useful information is being passed to management and the CERT when escalated for specific answer
Keep good level of understanding of business/products, application programs, and infrastructure at LendingTree so it can be corelated with various system alerts to define appropriate mitigation/escalation steps.
Performs post-mortem analysis with logs, network traffic flows, and other recorded information to identify intrusions by unauthorized parties, as well as unauthorized activities of authorized users
Enforcement of organizational security policies through monitoring of vulnerability reports
Perform weekly, monthly management reporting tasks
Qualifications
7+ yrs. experience in IT with 4+ yrs. in Enterprise Information Security/Risk Assessments
Deep passion for information security and the desire to constantly learn and grow in the field
Good understanding of with industry standard security monitoring systems and security tools
Self-motivated and able to work well with minimal to no supervision in a team environment; consult with team members and management as needed
Strong attention to detail and follow-up skills with ability to identify and resolve problems
Ability to perform analysis of data, processes, policies, procedures and/or systems; produce unambiguous, comprehensive and accurate interpretations
Experience, exposure to some of the following areas is must
· Log monitoring of Checkpoint, Cisco, Palo Alto firewalls
· Deep experience working on SIEM platforms such as Splunk, ArcSight LogRhythm
· Lucene query syntax
· Cloud computing environment such as Google Cloud, AWS, Azure etc.
· Vulnerability scanning tools such as Qualys, Nexpose, Nessus
Job Type: Part-time
Salary: ₹800,000.00 - ₹1,200,000.00 per year
Experience:
Education:
Work Remotely:
Offered Pay Amount
Pay Amount : Rs. 8,00,000 - 12,00,000 p.a.Industry
Cyber Security Specialistnumber of openings :
1Qualification :
Job Location