Job
Description
Job Description Position : Security Consultant Location : Onsite - Gujrat ,Gandhinagar State Data Center IT Infrastructure Security Management. Vulnerability Management Major and Critical Incident with respect to Security Domain Log Analysis Incident Management Problem Management Change Management Capacity Management ISO Management Internal/External Audit Management Knowledge management (KEDB) Root Cause Analysis and Improvement Technical Documentation like HLD, LLD, SOPs MIS Reports Preparation Knowledge Transfer to L1 & L2 Effective handling of Customer/User/Technical Escalations Supporting Organization operational Goals without penalties. Supporting Organization on adhering to ISO process Adhere and ensure team adhere to all the policy and processes defined in client location. Key Deliverables: - (a) Addressing the ongoing needs of Security Management including, Monitoring and Management of various devices / tools such as Firewall, SIEM Tool, Intrusion Prevention System, Content Filtering and URL Blocking, Virus Protection, Load Balancer, WAF, DMZs, VLANs, Proxy and vulnerability protection through implementation of proper patches and rules as per best practices. (b) Carrying out periodic Vulnerability Analysis and Penetration Testing (VAPT) to ensure that SDC systems and network are safe and secure. This activity has to be performed atleast once in month and on need basis as per GOG instructions. (c) Maintaining an updated knowledge base of all the published security vulnerabilities and virus threats for related software and microcode etc. (d) Ensuring that patches/workarounds for identified vulnerabilities are patched/ blocked immediately. (e) Respond to security breaches or other security incidents and ensure that workaround / patches are made available for the same. (f) Provide a well-designed access management system, security of physical and digital IT assets, data and network security, backup and recovery etc. (g) Maintenance and management of IT security devices, including, but not limited for maintaining firewall services to restrict network protocols and traffic, detecting intrusions or unauthorized access to networks, systems, services, applications or data, protecting email gateways, firewalls, servers, from viruses. (h) Ensuring that the IT security policy is maintained and updates to the same are made regularly as per ISO 27001:2013, ISO 20000:2018 guidelines. (i) Access Control Management (1) Audit Trail and Log Analysis (2) Establishing and monitoring access control (j) Firewall policy management which will include the Configuration & Patch Management Intrusion Detection System Management: This arrangement shall include Incident Handling and recovery. The Incident Handling Procedure (IHP) has to be followed as per the guidelines drawn by the DST, GoG. This would also include virus and spam control, policy configuration & management. The audit logs shall be maintained by the Bidder for review. The bidder would also establish counter measures that are needed for the perceived risks. The bidder shall establish the counter measures to mitigate the risk. (k) The successful bidder would be responsible to ensure that any Vulnerability or security advisory, as notify by CERT-IN, NCIIPC, NIC-CERT, OEM and any other agency should be fixed/complied as per the SLA. The successful bidder (O&M operator) would keep track of such notification and intimate concern authority at and TENDERER immediately. Technical & Functional Skills & Certifications Rich Hands-on experience of Network Security Operation. Manage Operation for complex security solution involving Firewalls, Web Application Firewall (WAF), IDS/IPS, Load-Balancer, Service Load Balance(SLB), Link Load Balancer (LLB), URL Filtering, Anti-Malware, Security Compliance Firewall: Checkpoint, Fortinet, Proxy: Cisco WSA IDS/IPS: Cisco Firepower, Checkpoint IPS Load Balancer: Array APV WAF : Fortiweb Vulnerability Management: Tenable, Nessus, OpenVAS SIEM / Soar/ Log Management: RSA, Arc Sight Endpoint and Antivirus Management: Trend Micro Deep Security, Trend Micro Apex One Email Security: Trend Micro IMSVA, Scan Mail for Exchange System Hardening, Internal Audit Knowledge of ISO 27000/ ISO20000 standards Experience in Risk Assessment, Vulnerability Assessment(VA), Security Policies Technical Documentation like HLD, LLD, SOPs Design complex Security Architecture MIS Reports Preparation Excellent Troubleshooting & Analytical skill Good in Managing the Critical Incidents / Problem tickets Out of Box thought process Experience in designing Plan of Action for complex Changes Task execution. Should be able to design Complex Security Architecture Additional information Education Qualifications and Certifications Graduate Relevant certification in security domain like CCSE / PCNSE / CISM / CISA / CISSP/CEH Minimum 10 years of relevant experience of Network Security Management.
