2 Edr Operations Jobs

Mizuho Global Services Pvt Ltd (MGS) is a subsidiary company of Mizuho Bank, Ltd, which is one of the largest banks or so called Mega Banks of Japan. MGS was established in the year 2020 as part of Mizuhos long-term strategy of creating a captive global processing center for remotely handling banking and IT related operations of Mizuho Banks domestic and overseas offices and Mizuhos group companies across the globe. At Mizuho we are committed to a culture that is driven by ethical values and supports diversity in all its forms for its talent pool. Direction of MGSs development is paved by its three key pillars, which are Mutual Respect, Discipline and Transparency, which are set as the baseline of every process and operation carried out at MGS. Whats in it for you o Immense exposure and learning o Excellent career growth o Company of highly passionate leaders and mentors o Ability to build things from scratch Know more about MGS: - https://www.mizuhogroup.com/asia-pacific/mizuho-global-services We are seeking a skilled and vigilant L1 for handling EDR operations to our dynamic security team. The Ideal candidate will play a key role in monitoring, analysing, and responding to security incident. The primary function of this position is to monitor the Carbon Black EDR alerts and maintain the SLA Qualifications: Graduation/Post graduation in, Computers, Information Systems, Computer Science, or Information technology systems 5 to 7 years of work experience as security analyst with hands-on experience of EDRs Good to have at least one cyber security certification (CEH, CompTIA+ etc.) Knowledge of banking business and information technology practices and trends in banking sector Ability to communicate effectively, both orally and in writing. Should be comfortable for 24/7 shifts Roles & Responsibilities Proactively research and monitor Carbon black EDR to identify potential threats that may impact the organisation, also able to and troubleshooting EDR agent related issues. Knowledge and hands-on experience with Carbon black EDR tool, alert detection and response. Analyse endpoint data to identify Indicators of compromise (IOCs) and suspicious activities. Understanding of threats, lateral movement, phishing, ransomware, spyware and emerging threats. Conduct initial triage and assessment of security incident, including determining the scope and impact. Ability to understand the threat intelligence tool for analysing the alerts in detail. Understanding of encrypted scripts and have ability to decode it to understand the alert execution. Abel to identify the incident and escalate it with seniors within timely manner. Understand the alert triage, processes, execution flow and services. Escalate confirmed security incidents to level2 analyst or IR team for further investigations. Ensure that all EDR operation and tickets are handled and resolved within SLAs. Should have expertise on TCP/IP network traffic, Internet protocols and event log analysis. Perform detailed analysis of threats and security events, using analytical skills, knowledge, and experience, with a clear narrative to support conclusions. Stayed up with latest cybersecurity threats, vulnerabilities, and trends, particularly those relevant to endpoint. Maintain awareness of industry best practices and standard for endpoint security and threat detections. Knowledge of Runbooks, Playbooks and following Standard Operating Procedures Ability to communicate effectively, both orally and in writing. Personal skills: Good Team player. Possess Positive and learning attitude. Good Verbal and Written communication skills. Sense of Ownership, Priorities and Autonomous. Address 16th Floor, Tower-B Brigade, World Trade centre, 142, Rajiv Gandhi Salai, OMR, Perungudi, Chennai, Tamil Nadu 600096 Show more Show less

You are invited to join our team as a skilled and vigilant L1 Cyber Security Professional for EDR Operations within our dynamic security team. Your primary responsibility will involve monitoring, analyzing, and responding to security incidents, particularly focusing on Carbon Black EDR alerts and maintaining SLAs. As a qualified candidate, you should possess a Graduation/Post-graduation degree in Computers, Information Systems, Computer Science, or Information Technology Systems with 5 to 7 years of relevant work experience as a security analyst, including hands-on experience with EDRs. It is preferred that you hold at least one cyber security certification such as CEH, CompTIA+, etc. Additionally, familiarity with banking business practices and IT trends in the banking sector would be beneficial. Your role will require you to proactively research and monitor Carbon Black EDR, identify potential threats, troubleshoot EDR agent-related issues, and analyze endpoint data to detect Indicators of Compromise (IOCs) and suspicious activities. Furthermore, you should be well-versed in threats like phishing, ransomware, spyware, and have the ability to decode encrypted scripts for alert execution comprehension. In this position, you will conduct initial triage and assessment of security incidents, escalate confirmed incidents to the appropriate teams, and ensure all EDR operations and tickets are resolved within SLAs. It is essential to have expertise in TCP/IP network traffic, Internet protocols, event log analysis, and stay updated with the latest cybersecurity threats, vulnerabilities, and trends relevant to endpoints. Moreover, you should be familiar with Runbooks, Playbooks, and Standard Operating Procedures, possess strong analytical skills to support conclusions, and maintain awareness of industry best practices for endpoint security and threat detection. Effective communication, teamwork, positive attitude, and a sense of ownership are key personal skills required for this role. If you are ready to take on this exciting opportunity and meet the specified qualifications, please share your updated resume with us at kanchana@kaivale.com.,