2 Usecase Creation Jobs

Job Role : Cyber Security Engineer--Work From Office Experience : 4 to 8 Yrs Key Skills: Security tools integration and management, Log ingestion, writing rules and polices in SIEM tool, USE case Creation Notice Period : 0 to 30 days Should be willing to work in Second shift Company: Cyber Towers, Quadrant 3, 3rd floor, Madhapur, Hyderabad -- 500081. Job Overview: Analyze and recommend improvements to network, system, and application architectures to enhance security. Research, design, and implement cybersecurity solutions that protect the organizations systems and products. Collaborate with DevOps, Platform Engineering, and Architecture teams to ensure security is embedded in the design and development of applications and systems. Actively participate in the change management process, ensuring security considerations are prioritized in system upgrades and modifications. Design and deploy automated security controls to improve efficiency in risk identification, configuration management, and security assessments. Develop and refine security policies to address cloud security misconfigurations, leveraging cloud-native security technologies. Implement logging and monitoring solutions for cloud environments to enhance SOC team capabilities in detecting and responding to security incidents. Assess and review emerging technologies to identify potential security risks and implement mitigation strategies. Design and deploy innovative security technologies to address evolving security challenges. Conduct vulnerability scanning, anomaly detection, and risk assessment to enhance the security posture. Work closely with security architects to develop and deploy security solutions that address cloud-specific risks. Take ownership of security posture improvements, ensuring strict security policies and controls align with business objectives. Research and stay up to date on emerging security threats and provide strategic recommendations to strengthen security defenses. Qualifications & experience: Hands-on experience with implementing security controls, including Database security, Web content filtering, Anomaly detection & response, Vulnerability scanning & management Proficiency in at least one scripting language (e.g., Perl, Python, PowerShell, Bash) for automation and security tooling. Expertise in at least one of the following security domains: Cloud-native security (e.g., IAM, security groups, encryption), Endpoint security (e.g., EDR/XDR, mobile security) Strong familiarity with industry security frameworks and regulations, including: NIST Cybersecurity Framework (CSF) , CIS Controls, HIPAA, GDPR compliance Ability to assess compliance requirements and implement security controls to ensure adherence. Strong problem-solving and analytical skills, with the ability to assess complex security risks and develop mitigation strategies. Excellent communication and interpersonal skills, with the ability to engage both technical and non-technical stakeholders. Proven ability to work independently, manage projects, and contribute as an integral part of a high-performing security team.

Hope you are doing good! Excellent Opportunity with LKQ India (Fortune 500 Company & Nasdaq Listed) at Bangalore location. Experience: 7 to 15 Years Work Location: Bannerghatta Rd, Bangalore Role:: Permanent Job Description: Configure and Administer Splunk SIEM (Security Incident and Event Management) tool. Administer Email Gateway technologies (Microsoft Defender /Abnormal Security). Zscaler proxy log analysis and leverage for investigation. Crowdstrike Endpoint detection and response platform and policy management. Analyze and assess security incidents and escalate to appropriate internal teams for additional assistance. Responsible for investigating incidents, analyzing attack methods, researching new defense techniques and tools, developing security policy, and documenting procedures for SOC. Malware analysis and other attack analysis to extract indicators of compromise. Perform data security event correlation between various systems. Prepare reports, summaries, and other forms of communication that may be both internal and client facing. Periodic upgradation/creation of correlation rules based on emerging threats and requirement following MITRE Attack US-Cert and other TTP sources. Lead Information security analyst, having an experience of 4+ years in incident management, log analysis and troubleshooting of network and security related issues. Comprehensive management and technical experience in building and leading large-scale SOC (Security Operations Center) Strong hands-on experience in security management tools like Splunk Security Incident and Event Management (SIEM) Good experience in working/communicating with cross-functional IT infrastructure teams like network, system, database, application, security to build and manage effective security operations. Building Security Operations Center and/or Incident Response Team from scratch. Implementation-of and building-content-in technologies like SIEM, SOAR and Cloud Security Solutions. Building Security Metrics that will help customers/management to understand the effectiveness and gaps in Incident Management and over all Cyber Security posture. Working with customers requirement gathering, on-boarding, technical discussions, report walk-throughs. Working alongside teams like Compliance and VAPT Exposure to related areas of cybersecurity including Host Security, Network Security, IAM, Vulnerability Management, Penetration Testing, Compliance etc. Develop security scope, KPIs, policies and procedures for various SOC activities. Defined workflows for the day-to-day operations of SOC Ensure timeline, scope, quality & resource is managed accordingly with committed deliverables. Developed Playbooks for analysis and incident remediation Participate in security design discussion with various teams (technical and management) and provide advice on how SOC can be used effectively. Installing, updating, upgrading SIEM solution. On-boarding log sources and working on log source issues. Create and fine-tune content in SIEM Correlation Rules, Dashboards, Reports, Lists etc. Interact with SIEM vendor TAC (support) to fix any issues with SIEM. Mentor L1 and L2 security analyst. Assist in analysis of P1 alerts and alerts that require involvement of multiple teams. Evaluate new solutions for SOC team. Experience in creating reports and KPIs for C-level audience. Experience of Integrating tools with SOAR and designing incident response workflows in SOAR platform. Hands-on Experience in writing custom scripts (Python and Regex) for task automation. Interested candidates, kindly fill up the below details and share updated resume to ajupendra@LKQCORP.com Years of Experience:: Current CTC :: Excepted CTC :: Current Location :: Currently you have PF / Provident Fund deduction with your company ? :: Notice Period ::