6.0 - 9.0 years

10 - 20 Lacs

hyderabad

Work from Office

About the Role: Duration: 6 months Timings: Full Time (As per company timings) Shift: General Shift, Cab facility is available. 5 days work from the office. Notice Period: (Immediate Joiner - Only) Responsibilities: Design and develop detection rules and policies to identify cybersecurity threats across various platforms and technologies. Lead the design, development, and deployment of high-fidelity threat detection mechanisms across our diverse technology stack, including on-premise, cloud (AWS, Azure, GCP), and SaaS environments. Collaborate with security analysts, threat hunters, and intelligence to understand emerging threats and devise effective detection strategies. Validate and tune detection content to minimize false positives and ensure high accuracy and efficiency. Stay updated on the latest cybersecurity trends, tools, and technologies to continuously improve detection methodologies. Work directly with clients to onboard their environments onto our platform and integrate data sources, guiding them through the process. Document detection processes, create reports on security metrics, and communicate findings to stakeholders Good understanding of network infrastructure, security, and devices, i.e,. Firewalls, EDR, Email Security, Proxy, DLP, and IDS/IPS Qualifications: Bachelors degree in Computer Science, Information Security, or a related field. At least 5 years of experience in cybersecurity, with a focus on threat detection, analysis, and incident response Strong knowledge of security information and event management (SIEM) systems, log management solutions, and detection platforms. Familiarity with attack patterns, tactics, techniques, and procedures (TTPs) used by cyber adversaries - MITRE ATT@CK and Cyber Kill Chain Experience with cloud security and understanding of cloud-based threat detection strategies. Strong communication and collaboration skills, with the ability to work effectively in a team environment and interact with clients Collaborate with the Security Operations team on developing and automating alert response processes and playbooks Knowledge of security tools and technologies, such as SIEM, CSPM, EDR/XDR, SOAR, WAF, and IDS/IPS. Professional security certifications such as OSCP, GIAC (e.g., GCIH, GCIA), CISSP, or other relevant certifications are highly valued. Hands-on experience with SIEM platforms for log management and alerting. Ex: Splunk, Elastic Stack (ELK/Security Onion), IBM QRadar, Securonix, Wazu,h or Azure Sentinel. Ability to create SIEM queries, dashboards, and integrate new data sources

Posted 17 hours ago

Apply

Start Your Job Search Today

Browse through a variety of job opportunities tailored to your skills and preferences. Filter by location, experience, salary, and more to find your perfect fit.