Microland Hiring For Administrator – Security at Bengaluru, Karnataka Full Time

Job Code : ML1CYSEPSP2N OVERALL SKILL SETS FOR End Point ýff Experience in endpoint protection troubleshooting ýff The security specialist is responsible for conducting information security investigations as a result of security incidents ýff Provide timely detection, identification, and alerting of possible attacks/intrusions, ýff Anomalous activities, and misuse activities and distinguish these incidents and events from benign activities. ýff Isolate and remove malware. ýff Conduct research, analysis, and correlation across a wide variety of all source ýff Data sets (indications and warnings). ýff Provide daily summary reports of network events and activity relevant to cyber defense practices. ýff Receive and analyze network alerts from various sources and determine possible causes of such alerts. ýff Notify designated managers, cyber incident responders and articulate the event’s history, status, and potential impact for further action in accordance with the organization’s incident response plan. ýff Work with stakeholders to resolve computer security incidents and vulnerability compliance. ýff Malware handling on AV ýff Host Intrusion Detection and Prevention (HIPS) ýff Monitor security of the cloud and on-perm environment using various security tools ýff Retrieve and report metrics on various security areas of the cloud on-perm environment. ýff Install and configure security systems and tools. ýff Behavioral analysis and actionable intelligence applied to stop an incident from breach ýff Ensuring that service reports are produced for each customer service and that breaches of SLA targets are highlighted, investigated and actions taken to prevent their recurrence Job Requirements ýff Good understanding of system security (client, server, system hardening standards) ýff Notion of networking concepts (routing, switching, proxy, firewall) and ability to assist SOC analysts with threat detection systems (networks, firewalls, servers, Windows, Linux, authentication etc.). ýff Ability to identify, analyze and report root cause of security incidents ýff Respond to security escalations and coordinate with internal, external and vendor support in order to provide initial analysis, containment, remediation, after action analysis and reporting of security events and incidents. ýff Ability to use email / web / network / security tools / systems logs to analyze ongoing incidents / define mitigation actions / conduct investigations ýff Creative, dynamic, open minded, pro-active, and enthusiastic ýff Result-focused, able to work under pressure ýff Honest, willing, and able to take the lead and to delegate tasks where necessary ýff Should be comfortable working in 24/7 shifts Desired Skills ýff Trend Micro ýff EPS, Antivirus management (crowd strike Falcon) , Symantec Endpoint Protection ýff EDR ýff Cloud technology (Azure/AWS Security Roles and Responsibilities: ýff In addition to over all skill L2 need to act as the coordinator and response to individual information security incidents ýff Mentor security analysts at L1 regarding risk management, information security controls, incident analysis, incident response, console monitoring, and other operational tasks in support of technologies managed by the Security Operations Centre ýff Document incidents from initial detection through final resolution ýff Participate in security incident management and vulnerability management processes ýff Participate in evaluating, recommending, implementing, and troubleshooting security solutions and evaluating IT security of the new IT Infrastructure systems. ýff Experience in managing (advanced) end-point protection technologies