Are you passionate about leading global Cybersecurity innovation and change? Do you thrive in environments that encourage critical thinking, creativity, and challenging the status quo?
Cyber Fusion Center is looking for a engineer for a hybrid role with involvement in Endpoint Security and Incident Response. The engineer is responsible for resolving operations issues related to endpoint security tools used in the company, handling individual customer request. The engineer also provides support to Computer Incident Response Team, investigating security incidents and defending the company infrastructure against cyber threat actors.
This position allows insight into various aspects of cyber security and exposes the engineer to a multitude of state-of-the-art security tools. As such, this position is a great base for further professional growth in many directions.
This role requires participation in 24x7 shift rotation.
Duties and Responsibilities
· Perform initial analysis, identification, and remediation of network intrusions and computer system compromises.
· Resolve operations issues with various security tools deployed in the company such as McAfee EPO, Windows Defender ATP, Bitlocker, etc.
· Address individual customer requests related to these tools.
· Constantly optimize work procedures and automate recurring tasks. Develop and update technical documentation, and formulate work instructions to address repeating issues.
· Closely work with Computer Incident Response Team on handling security incidents against the company infrastructure.
· Escalate complex issues and collaborate with L3 engineers in addressing them.
· Collaborate with global team members based in the US, India and Europe.
· Serve as part of a 24/7 shift support modem (no night shifts).
Key Requirements
· Bachelor’s degree in Cybersecurity, Computer Science, or equivalent experience.
· 2+ years of experience in Information Security or Information Technology fields.
· 2+ years of experience in Incident Response.
· Experience with SIEM and EDR solutions.
· English language proficiency
· Good technical knowledge of Windows operating systems and networking.
· Analytical skills in threat, vulnerability, and intrusion detection analysis.
· Keen understanding of threat vectors as well as exfiltration techniques.
· Awareness of cyber security landscape.
· Willingness to learn.
· Customer-oriented mindset.
We value
· Experience with SOAR Solutions like XSOAR/Demisto.
· Knowledge in cloud security (Azure, AWS, MS Office 365).
· Knowledge of Linux operating system.
· Experience with dynamic and static malware analysis
· One or more widely recognized certifications from renowned institutions such as GIAC/SANS, ISC/CISSP or Microsoft.
· Working knowledge of Endpoint Detection and Response tools (e.g., Crowdstrike Falcon, Carbon Black, FireEye HX or Windows Defender ATP).
· Knowledge of scripting in Python or Powershell.
· Understanding of ITIL process, such as Incidents, Change & Problem management.
· Experience in working in a global, process-driven organization.
Additional InformationJOB ID: HRD254274Category: EngineeringLocation: Devarabisanahalli Village, KR Varturhobli,,East Taluk - Phase I,Bangalore,KARNATAKA,560103,IndiaExemptEngineering (GLOBAL)