T&T Cyber: D&R Consultant Network Security

Required Skills: -

• • 2+ years in IT Security, Network Operations, or Infrastructure Support.
    

  • Basic understanding of TCP/IP, routing, switching, VLANs.
    

  • Knowledge of security fundamentals (CIA, Zero Trust, malware, phishing).
    

  • Familiarity with firewalls, IDS/IPS, WAF, EDR, PAM, DLP, NAC, MDM.
    

  • Ability to follow SOP/runbook-based troubleshooting.
    

  • Good ticketing skills (ServiceNow, Jira, Remedy).
    

  • Strong communication and customer-handling skills.
    

1. Perimeter Security & Network Security (Must have)

• Monitor alerts and events from   Perimeter Firewalls   (Palo Alto /Fortinet /Check Point / Cisco).
  

• Perform basic troubleshooting such as rule lookup, session checks, and connectivity validation.
  

• Monitor   IDS/IPS  events and raise incidents for suspicious activity.
  

• Perform initial triage of   WAF  alerts and identify false positives vs genuine attacks.
  

• Support   DDoS  monitoring activities and escalate critical events.
  

2. Endpoint & Email Security (Must have)

• Monitor and respond to alerts from   EDR/XDR solutions   (CrowdStrike, Defender, SentinelOne, etc.).
  

• Validate threat detections for malware, suspicious behavior, quarantined files.
  

• Review alerts in Secure Email Gateway   (Proof point,M365, IronPort) for spam/malicious indicators.
  

• Support user requests like email release, safe sender/blocked sender updates.
  

3. Identity & Access Security (good to have)

• Provide first-level support for   Privileged Access Management (PAM) :
  

• Password checkout issues /Account lockouts/Session connection failures
  

• Follow SOPs for provisioning/deprovisioning privileged users as per approval.
  

4. Data Protection & Cloud Security (good to have)

• Monitor  DLP alerts   for web, email, endpoint channels.
  

• Run SOP-based triage for policy violations and escalate incidents.
  

• Support  CASB/Policy Broker   alert validation (Shadow IT, risky SaaS usage).
  

5. Device, Patch & Network Infrastructure Support (Must have)

• Support  Patch Management (Windows/Linux)  for scheduled patch cycles.
  

• Validate agent health, patch status, and provide initial troubleshooting.
  

• First-level support for   MDM  platform (Intune, Workspace ONE - anyone):
  

• Device onboarding /Compliance issues /Profile/Policy sync issues
  

• Basic   NAC  support (Fore-scout / ISE/Aruba Clear pass - anyone):
  

• Endpoint posture checks /VLAN assignment issues /Guest access onboarding
  

• Support  Switch & Wi-Fi Management :
  

• Basic connectivity checks / Port status /Device availability monitoring
  

6. Monitoring, Reporting & Documentation(Must have)

• Monitor dashboards, SIEM alerts, and daily health checks.
  

• Create incident tickets and document troubleshooting performed.
  

• Generate daily/weekly compliance and alert summary reports.
  

• Follow shift handover/hand off documentation standards.
  

Preferred Qualifications:

• Bachelor’s or Master’s degree in Computer Science, Information Security, or a related field.
  

• Experience working with global clients and cross-functional teams.
  

• Ability to manage multiple opportunities and priorities in a fast-paced environment.
  

Location and way of working

• Base location: Bangalore