Innovative Optics and Technology Solutions
20.00 - 25.00 INR (Lacs)/Yearly
Process and Technology Skills
- Proficient in SIEM platforms such as Splunk, Palo Alto Cortex, and Google SecOps, with comprehensive understanding of their architecture, deployment procedures, and continuous management
- Strong troubleshooting skills to resolve technical issues with SIEM.
- Expertise in collecting, parsing and normalizing log data from various sources such as servers, network devices, Cloud platforms and applications with strong Knowledge of log formats (Syslog, JSON, XML, Windows Event Logs)
- Strong understanding of networking protocols (TCP/IP, HTTP, SSL/TLS) and technologies such as Next-gen firewalls, intrusion detection/prevention systems (IDS/IPS), Proxy & DNS
- Understand cloud platforms (like AWS, Azure), their logging tools and integrate logs using agents, APIs, or native connectors via transport methods like Syslog, S3, Event Hub, Pub/Sub, or HTTP
- Deep understanding of MITRE ATT&CK framework (tactics, techniques & procedures). Also Familiarize with the Cyber Kill Chain model to map attacker progression
- Experience in developing, tuning & correlating the detection rules to reduce false positives and enhance detection accuracy
- Strong Knowledge in threat intelligence sources (commercial and open source) and proficient in automating alert enrichment using threat intel, familiar with STIX/TAXII standards for intelligence sharing
- Knowledge of security frameworks, like PCI-DSS, HIPAA, ISO 27001 and SOX, ensures compliance by managing access controls, logging, monitoring, security and auditing financial and sensitive data systems
- knowledge in Information Security policies, procedures, standards, best practices and guidelines
- Hands-on experience with scripting languages such as Python, PowerShell and REST APIs to automate SIEM functions, including data onboarding, rule deployment, enrichment and SOAR integration.
- Proficient in creating dynamic dashboards that clearly display security posture and event trends.
Other skills
- Knowledge and understanding of project management methodologies, processes, and tools.
- Strong analytical skills and ability to solve complex technical problems with high attention to detail and accuracy.
- Strong team player and ability to work in a challenging and constantly changing environment.
- Ability to multitask and work independently with minimal direction and maximum accountability.
- Proficiency in verbal and written communication skills.
- Proficiency in time management and presentation skills
- Proficiency in decision-making and problem-solving skills
Process and Technology Skills
- Proficient in SIEM platforms such as Splunk, Palo Alto Cortex, and Google SecOps, with comprehensive understanding of their architecture, deployment procedures, and continuous management
- Strong troubleshooting skills to resolve technical issues with SIEM.
- Expertise in collecting, parsing and normalizing log data from various sources such as servers, network devices, Cloud platforms and applications with strong Knowledge of log formats (Syslog, JSON, XML, Windows Event Logs)
- Strong understanding of networking protocols (TCP/IP, HTTP, SSL/TLS) and technologies such as Next-gen firewalls, intrusion detection/prevention systems (IDS/IPS), Proxy & DNS
- Understand cloud platforms (like AWS, Azure), their logging tools and integrate logs using agents, APIs, or native connectors via transport methods like Syslog, S3, Event Hub, Pub/Sub, or HTTP
- Deep understanding of MITRE ATT&CK framework (tactics, techniques & procedures). Also Familiarize with the Cyber Kill Chain model to map attacker progression
- Experience in developing, tuning & correlating the detection rules to reduce false positives and enhance detection accuracy
- Strong Knowledge in threat intelligence sources (commercial and open source) and proficient in automating alert enrichment using threat intel, familiar with STIX/TAXII standards for intelligence sharing
- Knowledge of security frameworks, like PCI-DSS, HIPAA, ISO 27001 and SOX, ensures compliance by managing access controls, logging, monitoring, security and auditing financial and sensitive data systems
- knowledge in Information Security policies, procedures, standards, best practices and guidelines
- Hands-on experience with scripting languages such as Python, PowerShell and REST APIs to automate SIEM functions, including data onboarding, rule deployment, enrichment and SOAR integration.
- Proficient in creating dynamic dashboards that clearly display security posture and event trends.
Other skills
- Knowledge and understanding of project management methodologies, processes, and tools.
- Strong analytical skills and ability to solve complex technical problems with high attention to detail and accuracy.
- Strong team player and ability to work in a challenging and constantly changing environment.
- Ability to multitask and work independently with minimal direction and maximum accountability.
- Proficiency in verbal and written communication skills.
- Proficiency in time management and presentation skills
- Proficiency in decision-making and problem-solving skills
