Technology Consulting-DT GSOC

Job Description

B.Tech / M.Tech/ MCA professional with 10-15 years of experience in the relevant role Should have strong hands on MS Power Point and MS Project Hands on experience and certification in any one SIEM (IBM QRadar, ArcSight, Azure Sentinel, Splunk) Security Certifications like CISSP, CISM, GIAC, Security+ etc . Role Description : The candidate should have an in-depth knowledge in design, operate and maintain the Security Operations. Design, build, operate, maintain and enhance the Security Operations Centre to provide managed detection and response services to customer. The requirements is in multiple areas covering management of day-to-day operations, establish strong governance and enhance capabilities, solution design, identification of opportunities and Lead generation. Professionals will also be responsible for responding to RFPs, create POVs and actively participate in business development in domestic and international market. Client facing - front end with the client- focused on engagements + Sales, BD + Capability Development. Key Responsibilities: Should have strong experience in design, deployment, configuration and maintenance of minimum one SIEM solution Lead any module within Security Operations Center like Threat Hunting, Threat Intelligence, Content Management etc. to improve overall detection response capabilities Well versed with logging standard development and device onboarding/log source integration of diversified devices including the ones not supported by SIEM OEM Able to perform detailed investigation of critical alerts and ensure timely response to mitigate risk emanating from the same Design, develop, monitor, adhere to various SLAs/KPIs/KRIs applicable to Security Operations Centre Should have clear understanding of MITRE framework and how to operationalize the same across multiple functions of SOC Should be able to perform analysis of logs from various devices and develop use cases considering evolving threat landscape for anomaly detection Should be able to work on large size RFP s on cyber managed services stitching multiple components related to SOC Creation of customized reports and dashboards for presentation to various stakeholders Handle 24*7 operations and support various SOC activities Good Communication Skill and stakeholder management is imperative