11792-Information Security Engineer(ZISPL Job No 552)

Security Engineering
• Participate in vendor identification and implement Cybersecurity tools for the team.

Security Monitoring
• Respond to escalations from the SOC on security alerts, eliminate false positives, triage significant security events based on impact and nature of the Security incident, and escalate according to the established procedures.
• Review automated daily security reports of key security controls, identify anomalies and, escalate critical security events to the appropriate stakeholders and follow-up as required.

Security Incident Response
• Conduct thorough investigative actions based on security events and remediate as dictated by standard operating procedures.
• Participate in all the phases of security incident response process, including detection, containment, eradication, and post-incident reporting.
• Record detailed Security Incident Response activities in the Case Management System.

QUALIFICATION:
• Bachelor’s Degree or equivalent in IT or Computer Science.
• Security Trainings/Certifications (e.g. SANS, CDAC-DITISS).
• 2+ years of relevant SOC IR experience.
• Should be ready to work in 24x7 rotating shifts.

REQUIRED SKILLS:
• Strong analytical and reasoning abilities.
• Motivation to identify and solve problems.
• Understanding of SIEM and other cybersecurity tools like AV, EDR, Firewall, SOAR.
• System & Network Log Analysis.