T&T-Cyber-D&R-SIEM-Consultant-Mumbai

Key Responsibilities:Skills & Knowledge : Lead a team of L1 and L2 engineers in shift. Work balancing of tickets across the shifts. Ensure shift handover. Manage the Quality audits of the L1 and L2 offense analysis. Support the Project Manager with escalations and timely RCA of incidents. Training of L1 and L2 resources on latest attack vectors and log analysis. Work with the SIEM Engineering team to fine tune the use cases and content on the SIEM platform. Bring down the false positives to a manageable level. Manage the work pressure on the project and keep the team alert and manage their work life balance.Ensure timely preparation of daily/weekly/monthly reports.Desired qualificationsSound Cyber Security Principles and well versed in security domains of Endpoint , Network, Database, Cloud Security technologies like IPS, WAF, Firewall, Deception, Cloud Security, AV, EDR, .Conduct senior level log analysis, proactive monitoring, mitigation & response to network & security incidents. Triage security events and carry out incident response steps.Implement & Maintain Extensive Security Operation Policies and procedures documentation including AWS cloudProactively Hunt & research potential malicious activity using tool like Cortex, Shodan, Qrdar etc. Identify Indicator of Compromise through static & dynamic analysis of commodity and 0-day malwarePerform advanced security event detection and threat analysis for complex and/or escalated security events.QRadar , Demisto/XSOAR , Qualys, MITRE Framework Attack Methodology.Preferred CertificationsIBM QRadar SIEM Certification.CISSP, CEH, CISM, or other relevant security certifications.Location and way of workingBase location: Mumbai/Navi MumbaiProfessional is required to work from office