About the Job

Skills

Position Overview

Define position overview. Sr. Security Engineer role will be resp

Define position overview. Sr. Security Engineer role will be responsible for configuring and managing the available operations tools and authoring standard operating procedures. With a strong Knowledge of SIEM and Working on the Jira ticketing system to manage the tickets which are generated by operation tools and end users.

Co-ordinates with the various teams (both internal and external) to update the tickets and follow up till successful closure in line

with agreed timeline. Responsible for deliverables as per roles and responsibilities defined to each. The individual must first

understand the operations of the company at the present time, research and recommend positive changes, and manage the steps

required to make the improvements.

 SIEM tool configuration and management

 24/7 – team management and Security monitoring the production environments.

 Managing the escalations and escalate to concerned internal team.

 RCA and documentations

 Ticketing System management with the defined SLAs.

 Authoring the Process and Procedure documents.

 Management of difference compliance requirements like PCI, FedRAMP, ISO etc

 Different cloud infra-assessment tools configuration and management

Position Holder is Accountable/Responsible For:

Define accountabilities. Accountability is being answerable for the result. List the key areas, projects, implementations or applications that the

individual is solely accountable for or has the primary decision-making authority. The purpose for defining these accountabilities is to clarify what

the employee is accountable for and to agree exactly on the scope of authority. Accountabilities may not be applicable for all roles.

 Monitor the Cloud resources effectively for security events and incidents.

 Perform security monitoring, event analysis, and incident response activities across the Platforms,

leveraging a variety of tools and techniques.

 Security orchestration automation and response experience.

 Auto remediation for the security incidents.

 Follow detailed operational processes and procedures to appropriately analyze, escalate, and assist in

the remediation of information security events and incidents.

 Prioritize multiple high-priority tasks and formulate responses/recommendations to customers and

team members in a fast-paced environment.

 Logs analysis during the Security incidents and remediation.

 Ticketing life cycle with SLA

 Thoroughly document incident response analysis activities & communicate findings.

 Keeps current on the IT threat landscape and upcoming trends in security.

 Escalation Management - Escalating issues to Technical Manager, CloudOps, AppOps & follow-up

Desired Skills & Experience:

Define Skills. Skill is knowledge or expertise in a job or activity, which you have gained because you have done that job or activity for a long time.

Qualifications & Experience

 Bachelor’s/Diploma computer science, or related field

 3-5 years of previous experience in Security Operations managing SIEM tool

 ITIL Process / Jira ticket management.

 Reporting and Documentation

 Security related certification is added.

Skills:

Mandatory Skills

 Good Communication skills

 SIEM monitoring and administration skills, example: Wazuh, Sumologic, CloudWatch and

other Security Monitoring Tools

 Configuring and managing co relation rules on SIEM.

 Understanding of network defense principles, common attack vectors, and attacker

techniques

 Knowledge of network and operating system security

 Kubernetes security

 Basic Linux/Windows OS knowledge, firewall rules and policy fundamentals

 Understanding of malware and cyber threats

 Understanding of OWASP top 10 security vulnerabilities.

 Handling ticket and escalations

Additional Skills

 Good analytical and problem-solving skills

 Strong aptitude for continuous learning and initiative to apply that learning to current

problems.

 AWS Basics – EC2, RDS and CloudWatch

 Basic Python and Shell scripting Knowledge

 Basic understanding of other query Language

 Certification – CEH / related domain.