Signature Writing

You have 4 to 9 years of experience and can join with a notice period of 30 days in a Work From Office (WFO) setup with Rotational Shifts. As a Cybersecurity Lead, you will be responsible for managing the Incident Management Network Security Signature Writing team. Your role includes overseeing incident response, signature development, stakeholder management, team management, and project management. The ideal candidate should possess a strong background in cybersecurity incident response and network security, along with excellent communication and leadership skills. Your key responsibilities will include monitoring and responding to security incidents, escalating when necessary, investigating security incidents, developing detection rules and signatures, creating signatures for vulnerabilities, and performing vulnerability hunting. You will also be responsible for deploying, configuring, and managing NDR tools, optimizing security tools to reduce false positives, documenting and reporting on security incidents, staying updated with cybersecurity trends, improving detection capabilities, engaging with stakeholders, managing escalated issues, leading and supporting the team, and overseeing projects related to incident response and signature development. Preferred skills for this role include experience with Microsoft Defender or similar endpoint protection solutions, a strong understanding of endpoint and network security threat detection and response, proficiency with SIEM platforms and scripting languages, knowledge of network protocols, firewall rules, and intrusion detection prevention systems, familiarity with advanced persistent threats, threat hunting, and incident response frameworks, understanding of IPS/IDS signatures and Rapid7 recognition signatures, as well as knowledge in malware and threat analysis and CVE hunting. This role requires flexibility for shifts, holidays, and on-call responsibilities, as it operates within a 24x7x365 environment. Mandatory skills for this position include expertise in Threat Landscape, Kusto, M365D, ITIL, Signature Writing, CVE Hunting, Python, and C#.,