T&T - Cyber : D&R - SOC, SIEM - Consultant

Key Responsibilities:

2-3 years of experience in 24x7 (rotating shifts) monitoring at a Security Operations centre

Preferred to be working in IBM QRadar SIEM solution Desirable that the candidate has leveraged SOAR in SOC monitoring.

Triage, analyze & respond to SIEM events with articulate analysis and clear response guidance/questions to other teams through established collaboration mechanisms (Ticketing systems, Mails)

Leverage the Operational & Tactical Threat Intel data from the established feeds & sources to detect Threats

Ability to efficiently utilize to log analytics and usage of QRadar for analyzing & filtering logs.

Optimizes threat detection products for data security information and event management (SIEM), advanced email protection, endpoint detection and response (EDR), antivirus, intrusion detection systems, firewalls, proxies, and other industry standard security technologies.

Works closely with Level 2 & Level 3 team towards the continuous improvement of the service

Should have expertise on TCP/IP network traffic and event log analysis.

Having strong perseverance to keep the Incident response actions focused & progressed.

Ability to effectively communicate (orally & written) complex technical issues to a diverse set of audience that include technical, non-technical & executive level staff.

Experience working in a Threat Intel team or Threat Hunting team would be a bonus.

It will be 5 days working on a rotating shifts basis, week off s can be on any 2 days of the week as would be decided by the Reporting Manager.

Educations :

Skills:

• Proven experience with Palo Alto Networks security products, especially XSIAM or Cortex platforms.
• Strong background in SIEM, SOAR, and security analytics tools.
• Experience migrating from other SIEM solution preferably IBM Qradar to Palo Alto Networks XSIAM is highly desirable.
• Solid understanding of cybersecurity principles, threat detection, incident response, and log management.
• Familiarity with scripting and automation languages (Python, PowerShell, etc) to support integrations and playbooks.
• Excellent problem-solving, communication, and project management skills.
• Relevant certifications such as Palo Alto Networks Certified Security Engineer (PCNSE), or Certified Information Systems Security Professional (CISSP) is an advantage.

Certifications

CEH/ CompTIA Security +/IBM QRadar Administration

Location and way of working

• Base location: Hyderabad
• Professional is required to work from client location.

Your role as a Consultant

We expect our people to embrace and live our purpose by challenging themselves to identify issues that are most important for our clients, our people, and for society.

In addition to living our purpose, Senior Executive across our organization must strive to be:

• Inspiring - Leading with integrity to build inclusion and motivation
• Committed to creating purpose - Creating a sense of vision and purpose
• Agile - Achieving high-quality results through collaboration and Team unity
• Skilled at building diverse capability - Developing diverse capabilities for the future
• Persuasive / Influencing - Persuading and influencing stakeholders
• Collaborating - Partnering to build new solutions
• Delivering value - Showing commercial acumen
• Committed to expanding business - Leveraging new business opportunities
• Analytical Acumen - Leveraging data to recommend impactful approach and solutions through the power of analysis and visualization
• Effective communication Must be we'll abled to have we'll-structured and we'll-articulated conversations to achieve win-win possibilities
• Engagement Management / Delivery Excellence - Effectively managing engagement(s) to ensure timely and proactive execution as we'll as course correction for the success of engagement(s)

• Managing change - Responding to changing environment with resilience
• Managing Quality & Risk - Delivering high quality results and mitigating risks with utmost integrity and precision
• Strategic Thinking & Problem Solving - Applying strategic mindset to solve business issues and complex problems
• Tech Savvy - Leveraging ethical technology practices to deliver high impact for clients and for Deloitte
• Empathetic leadership and inclusivity - creating a safe and thriving environment where everyones valued for who they are, use empathy to understand others to adapt our behaviours and attitudes to become more inclusive.