Description And Requirements
Job Responsibilities
- Responsible for gathering correct information to submit Archer Incident requests
- Risk assessment and Impact analysis of the compromised machines infected by Malicious Domains
- Interact with different regional security teams and engineers daily in context to suspicious activities reported for compromised machines for containment
- Analyze Financial Services ISAC emails to check multiple vulnerabilities reported which can be exploited by malicious people to disclose certain sensitive information, manipulate certain data, and cause a DoS (Denial of Service)
- Reporting of logs and updating hashes on SharePoint for the Malicious Domains, IP reported in FSISAC emails
- Analysis of New and Dropped Domains reported in Mark Monitor Application. Escalating the Suspicious Domains to Mark Monitor for take down
- Daily report out of High scoring Domains published in Open DNS communicating with internal MetLife machines for a possible infection
- Run daily queries on Splunk and report out for identify Pan Threat “Domains”, Filenames, Ransomware
- Analysis of incidents/reports/dashboards and extracting Bluecoat/Palo Alto logs from Symantec portal
- Analyze and report out of the Malicious URL’s published in BCOAT Report post reviewing them on Virus Total, URL Void, OpenDNS, Malware Domainlist, Bluecoat, Google
- Excellent Soft skills (Mandatory )
- Excellent Communication skills (Mandatory )
- Excellent E-mail writing skills (Mandatory )
- Excellent inter-personal skills with the ability to coordinate cross functionally
Knowledge, Skills And Abilities
Education
- IT Graduate
- Basic IT Infrastructure & Incident Management Knowledge
- Knowledge of Databases, Networks, Hardware, Firewalls and Encryption
Experience
- 4-6 years of Experience of IT Risk & Security Audit & Compliance
- Hands on work experience in Cyber Security
- Must process problem solving, planning, and analytical skills to drive continuous improvements
Knowledge and skills
(general and technical)
- Expertise in networking Security System i.e. Firewall, Dynamic Host Configuration Protocol (DHCP), Secure Sockets Layer (SSL), Content Delivery Network, DNS
- Thorough knowledge of Service Now applications
- Experience and knowledge of Incident management practices
- Exposure to IT Archer Findings
- Exposure to enterprise share-point
- Prior experience in managing Incident helpdesk / Incident management work is preferable
- Intermediate MS Office skills
Other Requirements (licenses, Certifications, Specialized Training – If Required)
- Preferably CISSP Certified
About MetLife
Recognized on Fortune magazine's list of the "World's Most Admired Companies" and Fortune World’s 25 Best Workplaces™, MetLife, through its subsidiaries and affiliates, is one of the world’s leading financial services companies; providing insurance, annuities, employee benefits and asset management to individual and institutional customers. With operations in more than 40 markets, we hold leading positions in the United States, Latin America, Asia, Europe, and the Middle East.Our purpose is simple - to help our colleagues, customers, communities, and the world at large create a more confident future. United by purpose and guided by our core values - Win Together, Do the Right Thing, Deliver Impact Over Activity, and Think Ahead - we’re inspired to transform the next century in financial services. At MetLife, it’s #AllTogetherPossible . Join us!
