Incident Response / Forensic Manager

0 years

0 Lacs

Posted:2 months ago| Platform: Linkedin logo

Apply

Work Mode

On-site

Job Type

Full Time

Job Description

Job Responsibilties: Security tools such as SentinelOne EDR, Zscaler Proxy, Bluecoat Proxy, F5 WAF console, CSPM, ASM etc should be reviewed and incidents reviewed and closed. Track the closure of all the incidents with the stake holders and complete the review as per the severity of the incident with the help of other teams. Preparing the reports of the incidents and related dashboard for complete view. Need to review alerts on CSPM. Need to take memory dump from endpoint & able to do memory dump analysis. Publish the incident report tracker on daily basis/periodical to seniors. Need to do end to end investigation and provide RCA into the reporting format. Email header analysis. Generate alert on various device. Need to check the log retention on systems/server/networks/storage/application logs and security devices as per ISSP policy of ISEC and regulatory requirement Required skills & experience: Hands on experience on Windows and Linux. Understanding of cyber kill chain. Understanding on APT threat vector. Understating on review of application logs. Understanding of Operating systems Windows,Linux. Understanding of AWS,Azure cloud logs Show more Show less

Mock Interview

Practice Video Interview with JobPe AI

Start Job-Specific Interview
cta

Start Your Job Search Today

Browse through a variety of job opportunities tailored to your skills and preferences. Filter by location, experience, salary, and more to find your perfect fit.

Job Application AI Bot

Job Application AI Bot

Apply to 20+ Portals in one click

Download Now

Download the Mobile App

Instantly access job listings, apply easily, and track applications.

coding practice

Enhance Your Skills

Practice coding challenges to boost your skills

Start Practicing Now

RecommendedJobs for You