Security Orchestration, Automation and Response

New Vacancy / By

Country of Work Location: India,

Special Skills: SOC Process, Linux, SIEM, Python or JavaScript, Information Security
Role: The resource would be responsible for the overall deployment strategy at the customer’s environment. This includes review of processes, design of use cases, and consultation on the different aspects of Demisto usage by the enterprise functions. As such, these profiles require extensive experience in the Cyber domain, hands-on experience and knowledge on how SOC operates, and good understanding in IR processes. They also need to be technical, but not necessarily coders. In addition, they (as anyone on the team) will need to be with excellent communication skills as most of their work us customer-facing.
Skills & Requirements:
Incident response experience and prior experience actively participating in the containment of incidents
Experience with handling analysis/monitoring using any SIEM or in SOC.
Experience in any security function and knowledge of various security technologies and domains.
Experience providing technical expertise regarding the defense of company information systems and networks
Knowledge of initiating computer incident handling procedures to isolate and investigate potential network information system compromises
Knowledge performing malware and/or forensic analysis as part of the incident management process
Experience identifying risks to computer systems and making written and verbal remediation recommendations to leadership
Experience supporting incident escalation, assessing probable damages, identifying damage control and remediation, and assisting in developing courses of action
Experience assisting with the implementation of counter-measures or mitigating controls
Experience in python/JavaScript
Knowledge and Experience in any Automation is a plus.
Knowledge of API’s, JSON and Linux administration
Knowledge of Demisto Security Orchestration Platform
Develop accepted and defined playbooks
Develop basic customs scripts as part of playbooks or workflow
Understanding of Demisto UI Configurable components
Understanding of Using the integrations
Typical Years of Experience: 6+ years of corporate IT Security experience