Security Analyst-VAPT

Job Description

IntroductionAs a Service Delivery Specialist, you are the face of IBM for our customers. Your clients success depends on your ability to understand their needs and respond to requests for new services. This role is an integral part of both account planning and delivering support strategies, working to proactively monitor problems, change processes, and handle issues to ensure our customers success.Your Role and Responsibilities IBM Security is helping clients develop an integrated and intelligent immune system. IBM s security portfolio provides solutions to organizations which holistically protect their people, data, applications and infrastructure.So, if your desire is to help empower people with unmatched security while working in a supportive and engaging environment, we d love to hear from you.Role and Responsibilities
• Provide guidance to improvise the defensive capabilities of the SOC in better identifying and responding to cyber security incidents
• Continuously enhance the security monitoring and response capabilities
• Lead the cyber drills and RED/BLUE team exercises and implementation of use case for enhancing the detection and response capabilities of SOC
• Review of threat hunting models and ongoing cases related to threat hunting
• Proactively search for threats and leverage the intelligence derived from threat hunting to prevent cybersecurity attacks
• Provide technical expertise specifically related to detection and response capabilities, SOAR, UEBA etc.
• Evaluate the new and emerging technologies to enhance the security monitoring capabilities
• Work with various OEMs and security vendors to understand their solution offerings and advise on appropriate technologies based on bank s requirements
• Provide administrative support in the modification, design and set-up of applications security
• Perform information system security vulnerability scanning to discover and analyse vulnerabilities and characterize risks to networks, operating systems, applications, databases, and other information system components
• Perform compliance scanning to analyse configurations and facilitate implementation of configurations and hardening settings for networks, operating systems, applications, databases, and other information system components
• Obtain from supported entities required security policy compliance documentation and artifacts
• Cyber Security Operations (CSO)
• Technology Controls & Compliance
• Educate Software Engineers on coding best practices
• Perform Cyber Security Audits and Penetration Tests mitigation of Cyber Security Vulnerabilities
Required Technical and Professional Expertise
• 3-5 years experience in Cybersecurity
• Understanding of SOC and its associated processes and workflows
• Familiarity with Threat hunting and various threat actor TTPs (tools, technique and procedure) and how they related to the different stages of MITRE ATT&CK framework
• Sound understanding of security technologies, common security threats and industry best practices
• Knowledge or academic familiarity with reverse engineering, malware analysis, security research and forensic tools
• Strong project management skills (objective setting, communications, risk management, performance tracking, evaluation/measurement)
• Self-starter; consistently energetic, positive, and proactive
• Ability to convey technical information to senior management in a simple and unambiguous manner
• Experience with vulnerability assessment tools Qualys, Tenableb Certified in common security certifications including trending EDP tools like Trend, understanding of SLAs and KPIs and supplier governance concepts
• Skills and experience in all or some of these areas:
  • Security Ops, Security Devices
  • IXIA
  • SOC Monitoring -> IBM, Securonix & XSOAR
  • Security Analytics -> Broadcom
  • HoneyPot / Deception -> SmokeScreen
  • SIEM -> IBM Qradar / Securonix
  • SOAR -> Paloalto
  • Non-Logging -> IBM, Securonix & XSOAR
  • Log Review / Log Analysis -> BM (Zsecure) / HPE/Xypro (Base24)
  • TIP -> Cyware
Preferred Technical and Professional Expertise
• Integrate Security into DevOps and enable security automation in CI/CD pipeline
• Professional Qualification : CEH, ECSA, LPT or Any other equivalent certification.
• Focused and versatile team player that is comfortable under pressure
• Ability to remove barriers and enable teams to complete their objectives
• Understanding of emerging technologies and corresponding security threats
• Self-motivated, flexible, with a can do attitude.
• Ability to pick up business knowledge, new technology areas, new processes/methodologies and apply these changes in the day-to-day working to improve Security organisation.
,

Keyskills :
idsenvironmental impact assessmentlog analysissiemrisk managementcyber security