Cyber Security Analyst

Job Description

Open Roles: Cyber Security OperationsLocation Pune: Working Model : Hybrid Experience 3-5 YearsJob Description: 1. Assists with responding to computer security incidents according to the Information Security Policies and Industry Best Practices.2. Assists with coordinating the efforts of and provide timely updates to multiple business units during response.3. Contributes to a team of cyber security professionals working with threat data, writing non-complex reports, briefing event details to leadership, and coordinating remediation with personnel.4. Monitor information security related web sites (SANS Internet Storm Center, etc.) and mailing lists (BugTraq, etc.) to stay up to date on current attacks and trends.5. Perform basic analysis in support of Intrusion detection operations. Documents and escalates incidents, including event's history, status, and potential impact for further action, that may cause ongoing and immediate impact to the environment.6. Assists with incident triage, to include determining scope, urgency, and potential impact; identifying the specific vulnerability; and making recommendations that enable expeditious remediation. 7. Provides timely detection, identification, and alerts of possible attacks/intrusions, anomalous activities, and misuse activities, and distinguish these incidents and events from benign activities. 8. Conducts research, analysis, and correlation across a wide variety of all source data sets (e.g., indications and warnings). 9. Recognizes a possible security violation or deficiencies and take appropriate action to report the incident, as required10. Working on Application Security, Logs maintenance, access review and DR plan preparations. Open Roles: Cybersecurity Risk AnalystLocation Pune: Working Model : Hybrid Experience 4-6 YearsJob Description: 1. Builds an understanding of Manufacturing cybersecurity policies and industry data privacy principles.2. Participates in cybersecurity risk identification utilizing identified risk management frameworks while working with the team to evaluate severity and mitigation plans. 3. Knowledge of India acts (e.g CERT-In,ITGC, IT Act etc.) in a manner specific to Cummins processes and controls.4. Assists in promotion of cybersecurity awareness. 5. Assists with responding to computer security alerts, events and incidents if any & coordinating the efforts of and provide timely updates to respective business units during the response. 6. Contributes to a team of cyber security professionals working with threat data, writing non-complex reports 7. Recognizes a possible security violation or deficiencies and report to the cyber governance team.8.Understanding a variety of security and compliance policies and incident response processes; working with respective business units to determine sensitive data that needs to be protected with the DLP technology. 9.Knowledge of core Information Security concepts related to Governance, Risk & Compliance10. Familiarity with networks and enterprise architecture 11. Excellent interpersonal, verbal, and written communication skills with the ability to communicate security risk and compliance related concepts to a broad range of technical and non-technical staff12. Ability to maintain incident and process documentation13. Ability to identify and translate data loss risks and planning mitigation into DLP policy rules14. Understand and apply security knowledge to concepts of Data at Rest, Data in Motion, and Data in Use15. Conduct analysis and complete reporting on DLP metrics, trends, and anomalies16. Assisting Business IT teams in creating the asset inventories, updating the drawings. 17. Assisting Business IT teams in creating the architecture review documents for new and upgradation projects Open Roles: Vulnerability Management AnalystLocation Pune: Working Model : Hybrid Experience 3-4 YearsJob Description: 1. Skilled and detail-oriented Vulnerability Management Analyst to support our cybersecurity team in identifying, tracking, and remediating software vulnerabilities and end-of-life (EOL) operating systems. 2. The successful candidate will work closely with application teams, site BISOs, and other stakeholders to ensure compliance and risk mitigation. Vulnerability Remediation: 1.Conduct regular meetings with the Organization’s Corporate, Manufacturing, and Site Application Teams to discuss vulnerabilities. 2.Track and report vulnerability remediation efforts across various teams. 3.Provide regular tracking metrics and updates to application teams and the cybersecurity team. 4. End-of-Life (EOL) Operating System Management: 5. Develop and maintain reporting dashboards using Tenable to track EOL OS efforts. 6. Monitor priorities, including BCC1, DMZ, End of Support systems, and assets still on the network. 7. Track exceptions and short-term extension requests related to EOL OS. 8. Collaborate with Site CISOs to ensure compliance with security policies and mitigate risks. 9. Tenable Security Platform Utilization: 10. Complete formal Tenable training and certification within the first year. 11. Utilize Tenable for producing vulnerability reports for different audiences. 12. Review vulnerability status and initiate scans as needed.