Job Opportunity-Endpoint Security Lead -Hyderabad.

Greetings from Technogen !!!

We thank you for taking time about your competencies and skills, while allowing us an opportunity to explain about us and our Technogen, we understand that your experience and expertise are relevant the current open with our clients.

About Technogen : TechnoGen Brief Overview:-

TechnoGen, Inc. is an ISO 9001:2015, ISO 20000-1:2011, ISO 27001:2013, and CMMI Level 3 Global IT Services Company headquartered in Chantilly, Virginia.

TechnoGen, Inc. (TGI) is a Minority & Women-Owned Small Business with over 20 years of experience providing end-to-end IT Services and Solutions to the Public and Private sectors.

TGI provides highly skilled and certied professionals and has successfully executed more than 345 projects.

TechnoGen is committed to helping our clients solve complex problems and achieve their goals, on time and under budget.

LinkedIn: https://www.linkedin.com/company/technogeninc/about/

Job Title :Endpoint Security Lead

Required Experience : 10+ years

Location : Hyderabad.

Job Summary :-

The Endpoint Security Engineering Lead is responsible for leading the design, implementation, and governance of the following Service Lanes: Endpoint Security, Event Logging and Monitoring, Digital Asset Protection, Security Engineering and Digital Forensics. The position will oversee the implementation, coverage and efficacy of security agents and their corresponding consoles to ensure assets are secured from threats external and internal. An additional area of accountability is to ensure the availability and integrity of audit logs for use in alerting and investigations. The final area of oversight is the program for Digital Forensics, in which forensic artifacts will be gathered and managed, to accommodate the requests from other areas of the business.

Lead and manage the Endpoint Security team, which encompasses the following programs

Asset Discovery and Management Locate unknown devices on Networks to triage and limit access to sensitive resources

Endpoint Controls Oversee the coverage and operational status of Security agents which are part of Security Requirements

Detection and Response Continuously analyze and tune policies within Security tools within the Endpoint realm to ensure they are providing the highest fidelity alerts

Lead and manage the Digital Asset Protection team, which encompasses the following programs

DAP/RAP To ensure that digital assets are only shared with persons with legitimate need/permissions

Secure File Transfer Maintenance and improvement of the Kiteworks platform to ensure that files shared externally can be done so in a controlled manner

Lead the Endpoint Security Engineering Team, which is responsible for assisting in any area which needs additional automation/integration work, POV/POC of new tools, anything outside of the expertise of SMEs in each Program.

Lead and manage the Digital Forensics team, which handles the maintenance and improvement of the Digital Forensics Infrastructure as well as the collection of Forensic artifacts requested by Business Units, mainly HR and Legal.

Lead the Logging and Event Monitoring team, which is responsible for ensuring that all audit logs are collected and place in a central and managed location. This team will also ensure that the logs that are ingested are parsed and organized so that searches are easy for other teams to craft.

Manages and is responsible for the successful completion of all tasks in assigned projects.

Available 24/7 for any critical security incident response that may arise which requires immediate resolution.

Work to ensure security tooling within environments are operational and operating at needed levels of service and availability.

Develops and assists the program leads with metrics to measure the effectiveness of all the programs.

Maintains current knowledge of relevant information security identity, authentication, authorization, and governance technology and techniques, bringing forth ideas for modernization and improvement.

Manage “Continuous Improvement” efforts, in respect to information security tooling and systems.

Contribute to security requirements, standards, procedures, and reference architectures to comply with policies and technical standards.

Other Duties as Required

Job Requirements

Certification/Licenses: - Preferable

CySA+ / CASP+ / OSCP / ODSA / Any GIAC / CISSP

Knowledge:

Endpoint Security Tools, MITRE ATT&CK framework, Security event analysis, Linux, Mac, Windows, EDR, SIEM, DLP, Secure File Transfer services, Cloud and SaaS administration, Program Management, OS hardening, CIS benchmarks, Security Requirements, Security Policies, NIST 800.53, Proof of Concept/Value efforts, DFIR, Vulnerability Management, Data Protection, Insider Threat, regulatory compliance, CIA triad.

Skills:

Ability to think outside the box, pivot and prioritize rapidly changing priorities and be fully invested in making an impact to the overall security and all its complexities

Excellent prioritization, decision making, critical thinking, communication, and relationship building skills.

Strong ability to work collaboratively across teams during high-stress situations.

Ability to work independently and in a team environment.

Strong ability to build, influence, lead and motivate effective teams towards end results.

Ability to write and present effective materials, including presentations, status reporting, etc.

Ability to lead effective meetings that are tailored to the audience.

Ability to negotiate with customers to reach agreement on common goals and service levels.

Ability to conduct thorough root cause analysis to resolve issues.

Experience:

7+ years’ experience in Security Engineering, Security Analysis, Data Protection, DFIR.

BS degree preferred, or equivalent proven work exeperience

Advanced scripting skills (Python, PowerShell, Bash)

Ability to communicate technical ideas to business users and other teams

Self-driven individual with good project management skills

Solid understanding of large-scale applications, network architectures, monitoring and fault management.

Skilled in examining and re-engineering Cybersecurity operations and procedures, formulating policy, and developing strategies.

Ability to analyze complex problems, interpret operational needs, and develop integrated, creative solutions.

Advanced analytical, evaluative, and objective critical thinking skills.

Ability to gather data, compile information, and prepare reports for Executive Management

Skilled in organizing resources and establishing priorities.

Ability to supervise and train employees, to include organizing, prioritizing, and scheduling work assignments.

Ability to provide technical guidance and leadership to professional personnel in area of expertise.

Ability to provide and drive data collection needs for various annual Corporate Audits: SOX, PCI, etc.

Best Regards,

Syam.M | Sr.IT Recruiter

syambabu.m@technogenindia.com

www.technogenindia.com | Follow us on LinkedIn