Job
Description
Senior Security Analyst (L2): A technical security engineer is responsible for ensuring the security of an organizations information technology systems, networks, and data. Their primary focus is on implementing, managing, and maintaining security measures to protect against cyber threats and vulnerabilities. Responsibility: Security Architecture Design : Designing and implementing secure network architectures, systems, and applications. This involves selecting appropriate security technologies, protocols, and best practices to ensure data confidentiality, integrity, and availability. Firewall and Intrusion Detection/Prevention Systems (IDS/IPS): Configuring and managing firewalls and intrusion detection/prevention systems to monitor and block unauthorized access attempts and malicious activities. Security Software Deployment and Configuration : Installing, configuring, and maintaining security software such as antivirus, anti-malware, and endpoint protection tools to safeguard systems from malware and other threats. Security Patch Managemen t: Regularly applying security patches and updates to software, operating systems, and applications to address known vulnerabilities and weaknesses. Security Incident Response : Developing and implementing incident response plans to effectively address and mitigate security breaches and cyber incidents. This involves identifying the root cause of incidents and taking appropriate actions to prevent future occurrences. Security Audits and Compliance : Conducting security audits and assessments to ensure compliance with industry regulations and standards (such as GDPR, HIPAA, PCI DSS), as well as internal security policies. Network Security : Implementing network security controls such as network segmentation, access controls, and encryption to protect sensitive data and prevent unauthorized access. Authentication and Authorization : Configuring and managing authentication mechanisms (like multi-factor authentication) and authorization controls to ensure that only authorized personnel can access systems and data. Security Monitoring and Incident Detection : Setting up monitoring tools to detect and respond to unusual or suspicious activities on the network. This includes log analysis and SIEM (Security Information and Event Management) solutions. Security Training and Awareness: Providing training and education to employees about security best practices, social engineering awareness, and safe online behavior. Security Documentation : Creating and maintaining documentation related to security configurations, processes, and incident response plans. Penetration Testing : Conducting or coordinating penetration tests and vulnerability assessments to identify potential weaknesses in systems and networks. Collaboration : Working closely with other IT teams, developers, and management to integrate security practices into all stages of system development and deployment. Research and Keeping Up to Date : Staying current with the latest security threats, vulnerabilities, and industry trends to continually enhance security strategies. Working Experience on below listed Solutions: Worked on Solutions Brand Protection Anti APT Solution Web Inspect Network Access Control Solution Vulnerability Management Digital Rights Management IT Security GRC Host Intrusion Prevention System Solution API Management Endpoint Encryption Firewall Analyzer Solution MDM Decoy (Honey Pot Solution) DDoS Data Leakage Prevention Solution Vsphere Standard Educational Qualifications Certifications: Minimum educational qualification: Graduation in engineering or equivalent and Minimum 4 years of experience in the field of network and security OR Graduate and Minimum 5 years of experience in the field of network and security Should be proficient in network technology and Microsoft OS Should be proficient with proposed solutions Should be proficient with Firewalls, Windows Active directory, Enterprise Anti-Virus Solution, Patch Management Solutions, and proposed solutions.
