
Search by job, company or skills

Title: Cyber Security Specialist
Position Objectives :
We are seeking a Cyber Security Specialist to support cybersecurity operations and security incident management.
The role is responsible for monitoring, investigating, escalating, and supporting the resolution of security alerts across AWS and on-premises infrastructure.
It requires capabilities for real-time monitoring, deep incident analysis, reducing false-positives, incident tracking and closure, as well as cyber-threat intelligence and incident response handling. This includes day-to-day interactions with Cyber Defense Centre MSSP to streamline the security events/incidents, uplifting security visibility posture, log integrations, Security Monitoring and Operations.
Indicative Responsibilities :
• Monitor, review, and triage security alerts generated by Cyber Defense Centre MSSP platforms and associated security tools.
• Investigate security events to determine validity, scope, severity, and business impact.
• Perform deep analysis of alerts/incidents and investigate for potential false positives, escalating potential incidents to the appropriate internal teams.
• Support incident response activities including containment, eradication, recovery, and post-incident review.
• Coordinate with internal stakeholders, MSSP teams, infrastructure teams, partners, vendors and other relevant parties for timely incident handling and closure.
• Analyze security telemetry and logs from AWS services and on-premises infrastructure, including servers, endpoints, network devices, firewalls, IDS/IPS, and SIEM sources.
• Ensure effective SIEM use cases, alert tuning, log onboarding, and correlation rules. Drive SOC maturity roadmap including automation (SOAR), threat-driven monitoring, and continuous improvement.
• Establish incident severity matrix, escalation protocols, and reporting mechanisms.
• Track and document incidents, RCA, actions taken, outcomes, and lessons learned for audit and compliance readiness.
• Support cyber-threat intelligence, advisory monitoring, and external threat review, in line with IRDAI's requirement for a cyber-threat intelligence process and analysis of internal and external sources. Bima Sugam India Federation
• Oversee threat hunting teams to proactively identify undetected risks.
• Contribute to alert tuning, use-case improvement, and operational efficiency in collaboration with detection and engineering teams.
• Ensure forensic readiness and manage digital forensics during critical incidents.
• Prepare incident reports for regulators, auditors, and senior management.
• Ensure handling of incidents and access to information remains consistent with internal policy, governance, and regulatory expectations in a regulated environment.
• Ensure SOPs and incident Playbooks are updated
• Present cybersecurity metrics, dashboards, and KRIs to senior leadership. Reports To Initial reporting to the CISO; Shall be changed later Key Skills & Competencies
Technical Knowledge:
• Strong understanding of security threats, attack techniques (Mitre Attack Framework), malware, phishing, exploit activity, and common network protocols.
• Hands-on experience with SIEM platforms such as IBM QRadar or equivalent.
• Familiarity with incident response workflows, security alert triage, and investigation methodologies.
• Working knowledge of AWS security and logging services such as CloudTrail, GuardDuty, Security Hub, VPC Flow Logs, and CloudWatch.
• Working knowledge of on-premises enterprise environments, including Windows/Linux systems, Active Directory, network infrastructure, and endpoint protection tools.
• Experience supporting outsourced or managed security operations is preferred, especially in an MSSP model.
Key Behavioural Traits A founding member at BSIF:
• Understand that Integrity, open & honest demeanour (transparency) & fair conduct is non-negotiable.
• Learns on the job, evolves with the role & navigates uncertainty with perpetual optimism
• Holds the team above self; gets along & finds common ground in the best interest of all our stakeholders
• Is frugal and uses scarce resources wisely
• Has an owners mindset: Is self-motivated / passionate, self-disciplined, has a continuous improvement mindset, doesn't need to be told what to do & never says that's not my job
• Is of service to her/his teams who chose to work with them (applicable for managers)
Qualifications
• Bachelor's degree in Cybersecurity, Computer Science, Information Technology, or a related discipline, or equivalent practical experience.
• 5–7 years of experience in SOC operations, security monitoring, incident triage, or incident response.
• CISSP, CompTIA Security+, CEH, GCIH, CySA+, or equivalent industry certifications.
Location
Mumbai (Powai) (work from office)
About Bima Sugam:
Pursuant to the Insurance Regulatory and Development Authority of India (Bima Sugam - Insurance Electronic Marketplace) Regulations, 2024 dated 20 March 2024, Bima Sugam India Federation (BSIF) has been established as a not for profit company formed under section 8 of the Companies Act, 2013. The main objective of the Company is to establish, facilitate, develop, operate and maintain the Insurance Electronic Marketplace as a robust Digital Public Infrastructure with open standards and interoperable platforms, enabling seamless integration with various services to facilitate inter purchase, sale, servicing of insurance policies, settlement of insurance claims, grievance redressal and other related matters as permitted under the objects of the company. The platform is aimed at digitizing insurance in India and potentially becoming the first of its kind globally. This is an insurance industry led initiative, and the shareholding of the Company shall be widely held amongst Life Insurers, General Insurers and Health Insurers with no single entity having controlling stake. BSIF is committed to building a people-first workplace, focussed on organization's performance & on people outcomes. We are in the process of building our founding team, a team bound by a sense of mission and inspired by BSIF's social objective. We seek to attract the best talent from various industry domains (including but not limited to Insurance & Financial Services, Tech Led New Age Economy Companies, FMCG companies etc.) to live their potential as well as to contribute to a noble cause.
Job ID: 150855553
We don’t charge any money for job offers