Security Professional - Blue Team

Job Title:

Reports To:

Exp - 8+ Yrs

Location - Noida, Pune, Bengaluru, Chennai

About HCLSoftware

HCLSoftware, a division of HCLTech, develops, markets, sells, and supports transformative solutions across business and industry, intelligent operations, total experience, data and analytics, and cybersecurity. We empower over 20,000 global organizations, including a majority of the Fortune 100 and almost half of the Fortune 500, committed to driving customer success through relentless innovation.

Website

https://www.hcl-software.com/

Summary:

The Blue Team Leader is responsible for leading and mentoring a team of security analysts and engineers in the detection, analysis, and response to security incidents. This role requires a strong understanding of security technologies, incident response procedures, and threat intelligence, as well as excellent leadership and communication skills. The Blue Team Leader plays a critical role in maintaining the organization's security posture and minimizing the impact of cyberattacks.

Responsibilities:

• Leadership & Mentorship:

  Lead, mentor, and develop a high-performing blue team, fostering a culture of continuous learning and improvement. This includes performance reviews, training recommendations, and career development guidance.

• Incident Response Management:

  Oversee the incident response process, from initial detection and analysis to containment, eradication, and recovery. Ensure timely and effective response to security incidents.

• Security Monitoring & Analysis:

  Manage and maintain security monitoring tools and systems (e.g., SIEM, IDS/IPS, endpoint protection). Analyze security logs and alerts to identify suspicious activity and potential threats.

• Threat Intelligence:

  Stay up-to-date with the latest threat intelligence, attack techniques, and security vulnerabilities. Use threat intelligence to proactively identify and mitigate potential threats.

• Security Tooling & Infrastructure:

  Evaluate, implement, and manage security tools and technologies to improve the organization's defenses. Ensure proper configuration and maintenance of security infrastructure.

• Vulnerability Management:

  Collaborate with vulnerability management teams to prioritize and remediate identified vulnerabilities. Ensure timely patching and mitigation of security weaknesses.

• Security Awareness Training:

  Contribute to the development and delivery of security awareness training programs to educate employees about cybersecurity best practices.

• Collaboration:

  Collaborate closely with other security teams (e.g., red team, engineering) and business stakeholders to improve the organization's overall security posture.

• Reporting & Communication:

  Prepare and deliver clear, concise, and actionable reports to management and technical teams, outlining security incidents, trends, and recommendations. Effectively communicate complex technical issues to both technical and non-technical audiences.

• Process Improvement:

  Continuously improve blue team processes, methodologies, and reporting to maximize effectiveness and efficiency.

• Compliance:

  Ensure all blue team activities are conducted within legal and ethical boundaries, adhering to relevant industry regulations and compliance standards.

Qualifications:

• Education:

  Bachelor's degree in Computer Science, Information Security, or a related field preferred. Relevant certifications (e.g., CISSP, GSEC, GCIA, GCIH) are highly desirable.

• Experience:

  Extensive experience (typically 5+ years) in security operations, incident response, and security analysis. Demonstrated leadership experience.Experience in HCL BigFix is beneficial, but not required.

• Technical Skills:

  Deep understanding of network protocols, operating systems, security tools, and incident response procedures. Proficiency in security information and event management (SIEM) systems and other security monitoring tools. Knowledge of various attack techniques and defense strategies.

• Soft Skills:

  Excellent communication, interpersonal, and leadership skills. Ability to work effectively in a team environment. Strong analytical and problem-solving skills. Ability to remain calm and composed under pressure.

• Mindset:

  A strong defender mindset with a passion for security and a drive to protect the organization's assets. Ethical and professional conduct.

Preferred Qualifications:

• Experience in large scale enterprise software development.
• Experience with cloud security.
• Knowledge of security architecture and design.
• Experience with digital forensics.