- Solid expertise in Threat Detections and Investigations and well versed in monitoring and analyze data from XDR, NDR to identify and understand potential threats.
- Manage and configure cybersecurity tools such as TrendMicro, Vectra and Fortinet to protect against threats.
- Proficient in developing and maintaining an organization-wide cybersecurity framework that aligns with industry best practices and regulatory requirements to decrease threats and vulnerabilities.
- Excellent in conveying, consulting & giving timely feedback on compliance and comfortable to work with teams to enhance cybersecurity measures.
- Extensive experience in a SOC environment and proven track record of performing threat investigation and remediation.
- Lead incident response activities, including investigation, documentation, and coordination with relevant stakeholders to mitigate impacts.
- Conduct regular security assessments and penetration testing to identify vulnerabilities and implement corrective measures.
- Manage security projects to enhance the organization's defense capabilities, including the selection and implementation of new security tools and technologies.
- Provide expert advice on data protection strategies, encryption technologies, and access control mechanisms to protect sensitive information.
- Liaise with external security organizations, industry groups, and regulatory bodies to stay updated on emerging threats and compliance requirements.
- Manage the security ticket lifecycle, from initial report to resolution and closure, prioritizing based on risk and impact to the business to ensure compliance with SLAs.
- Contribute in performing security assessments against industry frameworks and recommend improvements
- Maintains standard operating procedures (SOP), processes and guidelines.
- Conduct regular reviews of security incident and request handling processes to identify opportunities for improvement, driving initiatives to enhance response times, effectiveness, and client communication.
- Monitoring alerts triggered from Security systems and responding in a timely manner.
- Provide detailed reports and analysis on security incidents and resolution performance, contributing to continuous improvement in security/network services and SLA adherence.
- Willing to do 24X7 standby
Job Requirements:
- Bachelor's degree in Cybersecurity, Information Technology, or a related field.
- Minimum of 5 years of experience in cybersecurity, with a strong background in threat analysis and protection.
- Proficient in using TrendMicro, Fortinet, and other cybersecurity tools.
- Extensive experience in conducting security assessments, technology consultations, and leading the deployment of cybersecurity measures within complex environments.
- Recognized as a Subject Matter Expert in cybersecurity with deep knowledge of TrendMicro, Fortinet, and expert technical workings of XDR, NDR and MDR technologies.
- Proven ability in developing and implementing comprehensive security frameworks and policies that meet industry standards and regulatory requirements.
- Certifications in cybersecurity (e.g., SSCP, CISSP, CISM, CEH) is desirable and experience with ITIL service management practices related to security management.
- Strong problem-solving skills, with the ability to quickly understand and mitigate threats, ensuring business continuity and compliance with SLAs.
- Ability to effectively communicate security risks and strategies to non-technical stakeholders, facilitating informed decision-making and fostering a culture of security awareness.