Security Consultant - Security Operations Center

Key Responsibilities : - Monitor and Respond to security incidents within the Security Operations Center (SOC), ensuring swift identification and mitigation of threats. - Perform Database Forensics and Email Forensics to investigate and analyze suspicious activities within databases and email systems. - Utilize SIEM tools (such as Splunk, LogRhythm, or others) to identify, monitor, and respond to security events and anomalies. - Conduct malware analysis and work with intrusion detection systems (IDS) and endpoint detection and response (EDR) platforms to detect, analyze, and mitigate threats. - Use data querying languages like Python, SQL, or SIEM QL to extract, manipulate, and analyze security data to support incident response and investigation efforts. - Collaborate with cross-functional teams to develop and implement response protocols for detected threats. - Provide expertise in forensic investigation methodologies to accurately identify the scope and impact of security incidents. - Ensure that all findings are documented and reported in accordance with organizational protocols and regulatory requirements. - Stay updated on the latest cybersecurity threats and trends to improve incident detection and response processes. Key Skills and Qualifications : - 3 years of hands-on experience in a SOC (Security Operations Center) environment. - Strong forensics expertise, including database forensics and email forensics. - Proficiency in using SIEM tools (Splunk, QRadar, ArcSight, etc.) for monitoring, analyzing, and responding to security incidents. - Experience in network and security monitoring, as well as incident response methodologies. - Skilled in data querying languages like Python, SQL, SIEM QL, and familiarity with platforms like Splunk. - Experience with malware analysis, intrusion detection systems (IDS), and endpoint detection and response (EDR) platforms. - Strong understanding of security operations and the ability to effectively investigate and resolve incidents. - Engineering or Post-Graduation degree in CS/IT or related field. - Certifications (one or more) in cybersecurity : - Certified Ethical Hacker (CEH) - Certified Hacking Forensic Investigator (CHFI) - Certified Incident Handler (GCIH) - Certified Intrusion Analyst (GCIA) - Certified Computer Security Incident Handler (CSIH) (ref:hirist.tech)

Location: bhopal, IN

Posted Date: 11/29/2024