Cyber Security Architect

Job Posting Title: Senior Cyber Security Analyst[SOC and IDS/IPS SME]

Start date - Immediate or 30 days max.

Description: Work location- Bangalore, Pune, Hyderabad, Noida, Gurgaon, Chennai -Hybrid.

Rate- Upto 30-32 Lpa -Can go more

Start date -Immediate 20 days.

Experience- 10 + yrs. Senior resource only

We need a person who has good technical skills in following areas

•Vulnerability Management – Adding new devices to VM Scope, Good Understanding of vulnerabilities prioritization

• IDS/ IPS- Good understanding of Rule creation with Programing language understanding for rule creation, Fine tuning IPS, reducing false positives

• SOC – Managing SOC Incidents/ Documenting the process and tickets received at SOC. Working well with other teams and good understanding of which teams should be involved in a SOC incident

• Risk Management – Understanding of Risk Concepts, Risk Scoring and Risk Management

• Executive Presence – The person should be able to write technical briefs in general language and interact with business/ technology leaders. Should have good written and verbal communication skills

• Major Incident Management

Additionally, the candidate is expected to have good/ exceptional communication skills to handle customer directly.

As part of the managed security service team, Cyber Security Analyst is a client facing role primarily responsible for overseeing and upkeeping the IDS/IPS intrusion management, co-ordinate SOC service and handle security incidents coordinating with SOC and other operations teams. Additionally, the analyst may also be required to carry out vulnerability management and management of overall security service actions

Company Name: VARITE INDIA PRIVATE LIMITED

About The Client: A global IT services and consulting company, multinational information technology (IT), headquartered in Tokyo, Japan. The Client offers a wide array of IT services, including application development, infrastructure management, and business process outsourcing. Their consulting services span business and technology, while their digital solutions focus on transformation and user experience design. It excels in data and intelligence services, emphasizing analytics, AI, and machine learning. Additionally, their cybersecurity, cloud, and application services round out a comprehensive portfolio designed to meet the diverse needs of businesses worldwide.

About The Job:

Job Description:

Oversee the upkeeping of the intrusion detection system (IDS) and intrusion prevention system (IPS) signatures for customer's security gateways and Firewalls.

Ensure that SOC services are delivered as per agreed Service Level Agreements (SLAs), quality standards, and client expectations.

Point of escalation for security incidents, coordinating across technical and non-technical teams to respond swiftly and effectively.

Coordinate the Security Operations, Incident Response Teams and other technical resources needed to troubleshoot major incidents to determine the affected/vulnerable systems, affected/vulnerable users Identify any business areas impacted and coordinate communications with all relevant stakeholders as per Major Incident Management process.

Coordinate the remediation and containment activities as advised by either the NTT DATA SOC or Incident Response Team.

Oversee, support, and manage through to completion the investigative and remediation activities in conjunction with relevant support teams.

Coordinate post incident investigation with relevant teams or third parties and document the appropriate report to be provided to the customer

Co-ordination of major security incidents out of hours (on-call rota) Provide clear, timely, and regular updates to Customers, senior management, business leaders, and other relevant stakeholders during critical security incidents.

Continuously track service performance and make improvements when necessary.

Carry out vulnerability management activities including co-ordination and reporting of vulnerabilities including:

Using InsightVM tool carry out scheduled scanning of systems, networks, and applications to detect potential security weaknesses.

Prioritize vulnerabilities based on their risk level, potential impact, and the criticality of the affected assets, ensuring that high-risk vulnerabilities are addressed first. Whenever a critical severity vulnerability is identified during a scheduled or ad-hoc scan, a remedy ticket will be raised to the appropriate resolver group to review and assess the vulnerability for mitigation or remediation.

Work with the Customer Business Owners to ensure they fully understand the risks, and can effectively coordinate the recommended remediation follow up with the system owners for updates on the outcome of their review and will follow the agreed process for updating the tracking document for each Scheduled Scan. track the progress and outcomes of the identified vulnerabilities through to closure Outside of the scheduled scans, carry out on demand ad-hoc scans and onboarding of new systems for scheduled scans Provide support and guidance to NTT DATA Delivery Teams and ensure compliance with the agreed Service Level Agreements (SLAs), quality standards, and client expectations.

Document and present to the customer the weekly and/or monthly service review reports.

Support Technical Service Delivery Manager in review of any service delivery processes and workflows, identifying areas for optimization and implementing best practices.

Shadow primary Technical Service Delivery Manager in order to provide service continuity in the absence of the primary Technical Service Delivery Manager Provide directions to SOC Service Desk when they need guidance on responding to threat notifications via emails Participate in security risk reviews

Role Summary: Designs and implements technical solutions for protecting the confidentiality, integrity and availability of sensitive information. Provides technical evaluations of client systems and assists with making security improvements. Provides technical support in the areas of vulnerability assessment, risk assessment, network security and security implementation. Conducts testing and audit log reviews to evaluate the effectiveness of current security measures. Conducts security product evaluations, and recommends products, technologies and upgrades to improve the client's security posture.

Qualifications:

At least 10 years of experience in providing technical support and advice for a Security Operations Centre Demonstrate in-depth knowledge of Security incident Management and Security Operations.

Excellent communication and client relationship skills to interface with clients, stakeholders, and senior leadership.

Past experience in supporting and managing IDS & IPS Demonstrable knowledge and Experience in providing Vulnerability Management Services Significant experience and ability to manage and lead in crisis situations, ensuring a swift and effective response.

Demonstrable experience in leading and coordinating diverse teams effectively.

Excellent English writing skills for technical documents and improving processes (such as policies and reports).

Outstanding English verbal communication skills with the ability to explain things in a clear and non-technical way.

Strong attention to detail and the ability to deliver high quality work.

A relevant and recognised professional Security / Risk / Compliance certification supporting the role, such as CISSP, CICM, GCIH, etc.

How to Apply: Interested candidates are invited to submit their resume using the apply online button on this job post.

About VARITE: VARITE is a global staffing and IT consulting company providing technical consulting and team augmentation services to Fortune 500 Companies in USA, UK, CANADA and INDIA. VARITE is currently a primary and direct vendor to the leading corporations in the verticals of Networking, Cloud Infrastructure, Hardware and Software, Digital Marketing and Media Solutions, Clinical Diagnostics, Utilities, Gaming and Entertainment, and Financial Services.

Equal Opportunity Employer: VARITE is an equal opportunity employer. We celebrate diversity and are committed to creating an inclusive environment for all employees. We do not discriminate on the basis of race, color, religion, sex, sexual orientation, gender identity or expression, national origin, age, marital status, veteran status, or disability status.

Unlock Rewards: Refer Candidates and Earn.

If you're not available or interested in this opportunity, please pass this along to anyone in your network who might be a good fit and interested in our open positions. VARITE offers a Candidate Referral program, where you'll receive a one-time referral bonus based on the following scale if the referred candidate completes a three-month assignment with VARITE.

Exp Req - Referral Bonus

0 - 2 Yrs. - INR 5,000

2 - 6 Yrs. - INR 7,500

6 + Yrs. - INR 10,000