10 Mitre Jobs

5 years in sec ops with focus on SOC operations & incident response Indepth knowledge of sec technologies, tools, & methodologies SIEM, IDS/IPS, EDR Understanding of cyber threats, attack vectors Exp with security compliance frameworks NIST ISO 27001 Required Candidate profile Technical Leadership Soc Process Optimization Tool Evaluation Incident Response & Threat Intelligence Strong Scripting skills- mandatory Exp-Tomcat/JBoss/Apache/Ruby/ NGINX Ability to work with Devops Perks and benefits Mediclaim + Additional 10% variable

Job description Job Title: Senior Security Researcher About Role : Develop cutting-edge IPS signatures that shield against emerging threats and Zero/N days vulnerabilities. Analyze and reverse engineer cyber-attacks and new vulnerabilities (CVEs) and effectively implement preventive measures to stay ahead of evolving threats. Develop and improve tools to automate analysis tasks, simulation software and administer a lab environment to replicate attacks. Publish technical blogs to spread awareness and help defenders with the necessary resources to protect their organizations. Experience with MITRE evaluation process would be added advantage. Vulnerability RCA, reverse engineering and POC verification and signature development for MAPP program Capable of working with little to no supervision. Company Benefits and Perks: We work hard to embrace diversity and inclusion and encourage everyone to bring their authentic selves to work every day. We offer a variety of social programs, flexible work hours and family-friendly benefits to all of our employees. Retirement Plans Medical, Dental and Vision Coverage Paid Time Off Paid Parental Leave Support for Community Involvement Were serious about our commitment to diversity which is why we prohibit discrimination based on race, color, religion, gender, national origin, age, disability, veteran status, marital status, pregnancy, gender expression or identity, sexual orientation or any other legally protected status.

Senior Security Consultant (Network Penetration Tester) NetSPI is the proactive security solution used to discover, prioritize, and remediate security vulnerabilities of the highest importance, so businesses can protect what matters most. NetSPI secures the most trusted brands on Earth through Penetration Testing as a Service (PTaaS), External Attack Surface Management (EASM), Cyber Asset Attack Surface Management (CAASM), and Breach and Attack Simulation (BAS). Leveraging a unique combination of dedicated security experts, intelligent process, and advanced technology, NetSPI brings a proactive approach to cybersecurity with more clarity, speed, and scale than ever before. NetSPI is on an exciting growth journey as we disrupt and improve the proactive security market. We are looking for individuals with a collaborative, innovative, and customer-first mindset to join our team. Learn more about our award-winning workplace culture and get to know our A-Team at www.netspi.com/careers. Join the mission as a Senior Security Consultant. We are seeking a skilled expert and detail-oriented Penetration Tester to conduct thorough security assessments, identify vulnerabilities, and provide expert recommendations to strengthen our clients' security posture. You will be responsible for performing Network (InPen) Penetration Testing, in addition to competencies in problem solving, client service, written/verbal communication, and project execution. You will work to deliver clear, actionable reports and contribute to the development of security best practices. Responsibilities : Conduct engagements on Network (InPen) Penetration Testing independently and provide technical oversight Perform internal, external and wireless network penetration tests Create, review and deliver reports for accuracy in technical oversight, perform weekly QA oversight, and provide mentoring support to others Create, deliver, and collaborate on penetration testing reports in diverse client environments, maintaining client-specific processes, reporting standards, and access protocols to help improve their security posture Research and develop innovative techniques, tools, and methodologies for penetration testing services, alongside commitment to improvement and execution on NetSPI specific products and processes Act as a resource for internal team members as it relates to in-depth technical questions or best practices Participate in development, implementation, and oversight of testing, delivery, and management strategies for key client accounts Perform administrative tasks related to day-to-day consulting activities to ensure smooth business and engagement operations. Minimum Qualifications : Bachelors degree or higher, with a focus on IT, Computer Science, Engineering or Math or equivalent experience Minimum of 5+ years of experience in Network Penetration Testing with expertise on InPen testing. Experience with offensive toolkits used for network and web or mobile penetration testing Familiarity with offensive and defensive IT concepts and protocols Extensive understanding of the OWASP Top 10, MITRE ATT&CK framework, and various security frameworks. Working knowledge of Windows, Linux and MacOS operating systems internals and administration Experience mentoring or coaching to growing team members, while sharing knowledge externally through blogs, hosting webinars, or presenting at conferences Ability to work independently and as part of a team Proficient communication skills, both written and verbal Willingness to travel up to 5-10%, as required. This position requires an 8-hour workday, with occasional evenings or weekends necessary to meet project deadlines or critical needs Preferred Qualifications: Ability to provide technical and QA oversight on Network (InPen) service line Experience in one or more of the following programming or scripting languages (e.g., Ruby, Python, Perl, C, C++, Java, and C#) Offensive Security Certifications (e.g., GXPN, GPEN, OSCP, CISSP, GWAPT) We are an equal employment opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, disability status, protected veteran status or any other characteristic protected by law.

Your key responsibilities Administration and management support of CrowdStrike Next-Gen SIEM/EDR Perform as the subject matter expert on any of the above solutions for the customer, use the capabilities of the solution in the daily operational work for the end customer. Advise customers on best practices and use cases on how to use this solution to achieve customer end state requirements. Content development (Use case development) which includes developing process for automated security event monitoring and alerting along with corresponding event response plans for systems Skills and attributes for success Customer Service oriented - Meets commitments to customers; Seeks feedback from customers to identify improvement opportunities. Experience in managing and administering security solution CrowdStrike Next-Gen SIEM/EDR Hands-on expertise in Security use case development and log source integration Good knowledge of SIEM technologies such as Splunk, Azure Sentinel from a Security Analysts point of view Exposure to IOT/OT monitoring (Claroty, Nozomi Networks etc.) is a plus Good knowledge and experience in Security Monitoring Good knowledge and experience in Cyber Incident Response Knowledge in ELK Stack Knowledge in Network monitoring technology platforms such as Fidelis XPS or others Knowledge in endpoint protection tools, techniques, and platforms such as Carbon Black, Tanium, CrowdStrike, Defender ATP or others To qualify for the role, you must have B. Tech./ B.E. with sound technical skills Strong command on verbal and written English language. Demonstrate both technical acumen and critical thinking abilities. Strong interpersonal and presentation skills. Minimum 4 years of Hands-on experience of operating/implementing the above security tools. Certification in any of the SIEM platforms is a plus Knowledge of RegEx, Perl scripting and SQL query language. Certification - CCSA, CEH, CISSP, GCIH, GIAC.

Role & responsibilities Responsibilities: clout security, cloud architect, This role is responsible for leading the Cyber related deliverables BA SAS India product line. The key areas of responsibilities include - Must have working knowledge and experience in secure lifecycle development process - Must be aware of secure design principles for Hardware, firmware, software - Must have keen understanding of end to end solutions architectures with IoT devices, firmware, software, REST API cloud, - Must have worked with cross functional team including various development teams, pen testing team, marketing team etc. - Must have knowledge of product cybersecurity risk assessment - Must have worked on threat modelling and threat mitigation using MS Threat modelling tool - Must have knowledge of security requirements using SD elements and implements with the help of development team. - should be aware of data privacy rules and regulations and should coordinate with data privacy and legal team for related risks and mitigation. - Must have knowledge of cybersecurity framework like NIST, MITRE etc.. - Must have knowledge of tools used in the pen testing, must be able to analyze the product cybersecurity issues and work on the mitigation. - Must have knowledge of open-source scanning Blackduck and static code SonarQube, Coverity and reverse engineering tools. Must be able to analyze the risk and resolves with the help of development team. - Knowledge related to STQC compliance requirements, IEC62443 and GDPR - Good to have worked on CCTV Camera products , Building automation. - Good to have knowledge of programming languages like C,C#, Java, Python, Angular, React, Linux OS, REST API - - Hands-on experience with IoT-based Embedded firmware development. - Must understand hardware devices, physical networks, network protocols (such as MQTT, TCP-IP, HTTP) , and non-functional requirements (such as security, scalability, performance, reliability, storage, latency, etc.) - Design and development of Firmware/Software using C/C++/Python real-time embedded environment. - Experience in software development with an Embedded Linux environment - System programming which involves multithreading, IPC mechanisms, etc. - Solid understanding of hardware, firmware and chipsets in IoT - Experience in software architecture and API development - Experience in firmware development for Linux operating systems - Experience developing software drivers and interfacing with hardware modules - Knowledge IoT cloud platforms and device SDKs (AWS, Azure) - Working with firmware development for IoT connected products is an added advantage. - Knowledge of Software version controlling (git) and software development process. - Good understanding of networking protocols relevant to video such as UDP, TCP - Excellent Communication Skills (in Speaking & Writing)

Cyber Architect / Firmware architect Position - Cyber Architect/ Firmware architect Experience - 6-8 yrs Client Name - Honeywell International Ltd Payroll Company - Bramha Tech CTC - As per industry norms Job Location - Pune Notice Period - Immediate/ serving Notice Responsibilities This role is responsible for leading the Cyber related deliverables BA SAS India product line. The key areas of responsibilities include Must have working knowledge and experience in secure lifecycle development process Must be aware of secure design principles for Hardware, firmware, software Must have keen understanding of end to end solutions architectures with IoT devices, firmware, software, REST API cloud, Must have worked with cross functional team including various development teams, pen testing team, marketing team etc. Must have knowledge of product cybersecurity risk assessment Must have worked on threat modelling and threat mitigation using MS Threat modelling tool Must have knowledge of security requirements using SD elements and implements with the help of development team. should be aware of data privacy rules and regulations and should coordinate with data privacy and legal team for related risks and mitigation. Must have knowledge of cybersecurity framework like NIST, MITRE etc.. Must have knowledge of tools used in the pen testing, must be able to analyze the product cybersecurity issues and work on the mitigation. Must have knowledge of open-source scanning Blackduck and static code SonarQube, Coverity and reverse engineering tools. Must be able to analyze the risk and resolves with the help of development team. Knowledge related to STQC compliance requirements, IEC62443 and GDPR Good to have worked on CCTV Camera products , Building automation. Good to have knowledge of programming languages like C,C#, Java, Python, Angular, React, Linux OS, REST API Hands-on experience with IoT-based Embedded firmware development. Must understand hardware devices, physical networks, network protocols (such as MQTT, TCP-IP, HTTP) , and non-functional requirements (such as security, scalability, performance, reliability, storage, latency, etc.) Design and development of Firmware/Software using C/C++/Python real-time embedded environment. Experience in software development with an Embedded Linux environment System programming which involves multithreading, IPC mechanisms, etc. Solid understanding of hardware, firmware and chipsets in IoT Experience in software architecture and API development Experience in firmware development for Linux operating systems Experience developing software drivers and interfacing with hardware modules Knowledge IoT cloud platforms and device SDKs (AWS, Azure) Working with firmware development for IoT connected products is an added advantage. Knowledge of Software version controlling (git) and software development process. Good understanding of networking protocols relevant to video such as UDP, TCP Excellent Communication Skills (in Speaking & Writing) Qualifications & Experience Graduate or masters in BE/B.Tech/MCA in Computers science, Electronics, IT with 7+ Yrs. of experience

IT Security: - Primary responsible for improving and maintaining the organization IT security posture - Work with partners to incorporate best practices and agility of our SOC and SIEM - Lead discussions on tools, services and actions related to security - Own the threat detection and response process - Be responsible for maintaining data security and resilience IT Compliance - Be proactive to meet compliances for various audits, not limited to Global Licensing Frameworks at SBX, internal and external audits - Familiar with NIST, MITRE and other similar frameworks Required Knowledge, Skills and Abilities - 10-12 yrs of overall experience (strong development foundations) - 5-7 years of Managing Security and Compliance for large organizations - Preferred certifications like CISSP, CSIM etc

A Senior Security Architect is a leadership role focused on designing, implementing, and managing an organization's cybersecurity infrastructure. They are responsible for ensuring the confidentiality, integrity, and availability of data and systems. Education & Qualification: B.E. / B.Tech / MCA./ BCA/ BSC with minimum 10 to 12 years of experience in Network security & architecture and Information security. Professional certifications such as Certified Information Systems Security Professional (CISSP), Certified Information Security Manager (CISM), or similar are preferred. Key Responsibilities: Develop and maintain a comprehensive security architecture framework aligned with business goals and regulatory requirements. Identify and assess security risks and develop mitigation strategies. Design and implement security solutions, including firewalls, intrusion detection systems, and data loss prevention tools. Create and maintain security architecture diagrams and documentation. Stay up-to-date on the latest security threats and technologies. Strong understanding of security domains (e.g., network security, data security, application security). Experience with security frameworks (e.g., MITRE, NIST, ISO). Profound understanding on cryptographic standards, application security, enterprise architecture, software development lifecycle etc Network security architecture and its development are both important to understand. Expertise in security measures such as firewalls, intrusion detection, and prevention systems (IDS/IPS), network access controls, and network segmentation. Perform security reviews, identify gaps in security architecture, and develop a security risk management plan Evaluate security architectures and designs to determine the adequacy of security design and architecture proposed or provided in response to requirements Thorough knowledge of authentication and authorization standards applicable in the web services, enterprise application, API development, eg: OAuth2, SAML, Tokenization etc. Responsible for designing, developing, and maintaining complex API architecture framework solutions that meet the requirements as well as adhering to established architectural principles, standards, and patterns. Advanced skill in Secure Software development lifecycle (SSDLC) methodology and Work with DevOps engineers to integrate new code into existing continuous integration (CI) and continuous delivery/deployment (CD) pipelines Deep understanding of security vulnerabilities, exploits application infrastructure, APIs etc Familiarity with OWASP, SANS and other coding guidelines Knowledge of Cyber kill chain (MITRE), Threat Modelling (STRIDE), NIST framework Experienced in security of middleware tools such as Service oriented architecture (SOA) Web architecture Ensure compliance with relevant security standards and regulations (e.g., ISO 27001, NIST). Strong analytical and problem-solving skills. Provide guidance and mentorship to junior security team members.

DFIR - J48417 Mandatory Skills : Cyber forensics, Memory analysis, Memory Forensics, Incident response, Digital Forensics, Strong communication skill (verbal and written), Working knowledge of Forensics tools including (but not limited to) FTK, Encase, Autopsy, Magnet Axiom, volatility, wireshark, Threat intelligence feeds, Cyber threat landscape and APT groups, SIEM (any), EDR (any), MITRE framework, Cyber kill chain framework. Qualifications : 2+yrs of working experience in the computer forensics, cybercrime investigations, and other related technical fields with a combination of both public and private sector experience preferred. Identify, contain, mitigate, recover, and report on cyber-security incidents affecting the enterprise and business. The ability to constantly develop new and grow existing skills relating to Digital Forensics, as well as computing and professional topics. Knowledge of computer forensic best practices and industry standard methodologies for investigating host-based and network analysis The knowledge, skills, and ability to preserve digital evidence from a variety of platforms in a forensically sound manner. Knowledge of and a proven ability to follow globally established standards in digital evidence acquisition and handling. Demonstrate an understanding of digital forensic tools and techniques used to support internal fraud and employee investigations. Serve as an initial point of escalation for suspected incidents and intrusions. Demonstrated capability with endpoint detection and live response tools. Knowledge of digital forensics on Microsoft Windows, Mac, and Linux based systems. Proficiency with DFIR related open-source tools, memory, and full disk analysis The ability to work independently or with a team during large scale forensic investigations Demonstrate an understanding of incident response forensics and root cause analysis. Experience preparing in-depth investigation reports into forensic investigations, breach reports, privacy incidents and data exposure type cases. The ability to constantly develop new and grow existing skills relating to Digital Forensics, as well as computing and professional topics. Strong attention to detail in conducting forensic analysis combined with an ability to accurately record full documentation in support of the investigation. Certifications: Desirable certifications include, (but not limited to) CHFI, CIH, CSA, CEH, GSEC, GCIH, GCIA, GCFE, GREM, GCFA. Required Candidate profile Candidate Experience Should Be : 4 To 12 Candidate Degree Should Be : BE-Comp/IT,BE-Other.

Title: Senior Security Engineer (WAF & Application Security) About Team Our Information Security team is dedicated to safeguarding our digital assets by implementing robust security measures across a heterogeneous ecosystemincluding 1,000+ microservices, mobile apps, and internal platforms—deployed in a hybrid environment On-prem and cloud (AWS & Azure) We take a proactive, comprehensive approach to threat detection, vulnerability management, and incident response, ensuring our systems remain resilient against evolving cyber threats. Key Responsibilities: Manage and optimize our Akamai-based Web Application Firewall and CDN to deliver robust protection, effective traffic filtering, and DDoS mitigation across all public assets. Continuously monitor and analyze web traffic to detect, validate, and respond to BOT attacks, scraping, and other malicious activities while minimizing false positives. Monitor alerts, respond to SOCC escalations and lead the incident response efforts by providing actionable security reports and implementation of future preventions. Configure public FQDN delivery on the CDN (static & dynamic content both) for optimal performance, SSL Certs provisioning/renewal, complex routing to multiple origins. Conduct comprehensive vulnerability assessments, including manual testing, code reviews, and penetration testing, to identify and remediate security weaknesses. Actively assess reported vulnerabilities in web applications/APIs/Native mobile apps along with collaborating with development teams to explain vulnerabilities and get them remediated. Stay current with emerging security threats, industry trends, and regulatory requirements, and evaluate new technologies or strategies to enhance our security framework. Configure and manage the Breach Attack Simulation (BAS) and other perimeter solutions like IDS/IPS, Deception grids & Decoy systems. Desired Skills: Deep understanding of security fundamentals, including secure communication protocols, cryptographic techniques and industry frameworks such as OWASP, NIST, MITRE Hands-on experience with Web Application Firewalls (preferably Akamai), CDN Management, associated security configurations (signature and behavioral both) Demonstrated expertise in mitigating evolving BOT attacks by anticipating attacker tactics, with the ability to manage incidents effectively and adapt defenses as threats mutate Experience in configuring public setups, traffic routing, domain management, SSL Certs rotations for heavy traffic websites. Knowledge of network security and perimeter protection solutions, including managing IDS/IPS systems, deception grids, and decoy systems. Scripting familiarity (e.g., Python, Bash, or PowerShell) for automating security tasks and desire to expand those skills Relevant certifications (e.g., CEH, CISSP, OSCP) and at least 3 years of experience in application and perimeter security