Information Security Engineer_10yrs_BLR_SISH

Job Description

Follow ITIL practices regarding incident, problem and change management and use domain knowledge to improve/enhance the work output of ISO team Providing guidance and support to technical teams on security standards and industry best practice Performing security operations and maintenance using security tools Manage and assist in performing on-going security monitoring of information systems including assessing information security risk through qualitative risk analysis on a regular basis Assessing the impact of emerging threats and managing teams to co-ordinate appropriate remedial actions Evaluating and recommending new information security technologies and counter-measures against threats to information or privacy Designing and implementing dashboards and data visualizations for various stakeholders and escalate problems to the respective authority when needed Ensuring that disaster recovery and emergency operating procedures are in place and tested on a regular basis - Conducting risk analysis to identify critical operations and systems that are core to continued business operations in the event of a disruption Applying professional judgment in complex situations and handle effectively multiple tasks, initiatives and prioritiesTechnical Skills: Understanding of basic network services, vulnerabilities and attacks Good knowledge of cryptography, application security, access control, malware, exploits and vulnerabilities Internet security, networking protocols, and related technologies, including IDS/IPS, firewalls such as Cisco, PaloAlto, etc, content filtering, and packet inspection Knowledge on Cloud technology and concepts Basic knowledge of any scripting languages or automation OS Concepts Windows, Linux and Unix server platforms Security managements tools and applications - Intrusion Prevention System : Sourcefire, AV : Symantec, Vulnerability Assessment via Qualys and WebInsepct, SIEM : ArcSight, Threat Detection via Vectra, Ticketing/ Change Management via ServiceNow, FireMon Monitoring platforms, Microsoft Infrastructure applications Other tools - AV and Malware analysis tools, Opensource Scanning tools, reporting tools, threat intelligence feeds, others Developing and maintaining network and data security capabilities used by the Information Security Operation (ISO) team Driving the development and ongoing tuning and optimization of security event monitoring and analysis application platforms Assisting in establishing and supporting enterprise policies, processes, and standard Service level agreement levelsEducational Qualification and Experience: Minimum of 15 years of formal education - Graduate / Post Graduate in Computer Science / Information Technology.Professional work experience of 4 to 9 years. Key Skills: Follow ITIL practices regarding incident, problem and change management and use domain knowledge to improve/enhance the work output of ISO team Providing guidance and support to technical teams on security standards and industry best practice Performing security operations and maintenance using security tools Manage and assist in performing on-going security monitoring of information systems including assessing information security risk through qualitative risk analysis on a regular basis Assessing the impact of emerging threats and managing teams to co-ordinate appropriate remedial actions Evaluating and recommending new information security technologies and counter-measures against threats to information or privacy Designing and implementing dashboards and data visualizations for various stakeholders and escalate problems to the respective authority when needed Ensuring that disaster recovery and emergency operating procedures are in place and tested on a regular basis - Conducting risk analysis to identify critical operations and systems that are core to continued business operations in the event of a disruption Applying professional judgment in complex situations and handle effectively multiple tasks, initiatives and prioritiesTechnical Skills: Understanding of basic network services, vulnerabilities and attacks Good knowledge of cryptography, application security, access control, malware, exploits and vulnerabilities Internet security, networking protocols, and related technologies, including IDS/IPS, firewalls such as Cisco, PaloAlto, etc, content filtering, and packet inspection Knowledge on Cloud technology and concepts Basic knowledge of any scripting languages or automation OS Concepts Windows, Linux and Unix server platforms Security managements tools and applications - Intrusion Prevention System : Sourcefire, AV : Symantec, Vulnerability Assessment via Qualys and WebInsepct, SIEM : ArcSight, Threat Detection via Vectra, Ticketing/ Change Management via ServiceNow, FireMon Monitoring platforms, Microsoft Infrastructure applications Other tools - AV and Malware analysis tools, Opensource Scanning tools, reporting tools, threat intelligence feeds, others Developing and maintaining network and data security capabilities used by the Information Security Operation (ISO) team Driving the development and ongoing tuning and optimization of security event monitoring and analysis application platforms Assisting in establishing and supporting enterprise policies, processes, and standard Service level agreement levelsEducational Qualification and Experience: Minimum of 15 years of formal education - Graduate / Post Graduate in Computer Science / Information Technology.Professional work experience of 4 to 9 years.,

Keyskills :
application securitynetworkingactive directorychange managementdata securityrisk analysisservice levelsecurity riskreporting toolsmalware analysisnetwork servicesdisaster recoveryinternet security