Experience in handling IT System Security and hands on experience in day-to-day SOC Operations/ IT System Security Audit/Ethical Hacking/Computer Forensics.
Knowledge in configuration and operation of SIEM solution preferably IBM Q Radar.
Strong basics in Network security is mandatory.
Good exposure in information and cyber security domain.
Experience of enterprise security architecture and information/cyber security areas such as Identity and Access Management, Data Protection, Vulnerability Management, Application Security, Infrastructure Security and Security Monitoring and Response
Closely collaborate with stakeholders in IT and others for day to day SOC related operations.
IT Asset integration with SOC security tools like SIEM, DAM, HIPS, Anti-APT, DLP.
Understanding of IT Security Technologies like Firewalls, IPS, WAF, AV, AD, DLP, LB, PIM-PAM, IAM, VPN, EDR, Anti-APT for logs correlation with security devices.
Experience on above mentioned security Technology & Solutions (At least one is mandatory).
SIEM Event Analysis, Rule creation, Automation, Asset Integration.
User & Network Behavior Analysis, Packet-capture and Packet flows analysis.
Monitor resource utilization of SOC systems for capacity planning, upgrades and overall system health.
for more details, please visit www.18stepsconsultants.com
Keyskills: soc it security ibm query management facility