Job Description

:

--------------------



Very good analytical skills Knowledge of current security issues standard attacks vulnerabilities threats Reconnaissance initial access persistence privilege escalation defense evasion credential access discovery lateral movement collection command and control Knowledge of the inner working of traditional security components firewall proxy reverse proxy VPN and traditional security architectures Knowledge of networking concepts TCP IP and standard protocols http ftp dns netbios SSL Windows and Linux knowledge from a security point of view e g standard processes abused by attackers persistence mechanisms used by attackers Public cloud knowledge particularly AWS and GCP Security concepts logging OT industrial IT knowledge Experience with SIEM and EDR tools ideally with Cortex XDR or Cortex SIAM Optimized requests Remote investigations Scripting knowledge ideally Python

Key Responsibilities:

-------------------------



A day in the life of an Infoscion As part of the Infosys consulting team your primary role would be to actively aid the consulting team in different phases of the project including problem definition effort estimation diagnosis solution generation and design and deployment You will explore the alternatives to the recommended solutions based on research that includes literature surveys information available in public domains vendor evaluation information etc and build POCs You will create requirement specifications from the business needs define the to be processes and detailed functional designs based on requirements You will support configuring solution requirements on the products understand if any issues diagnose the root cause of such issues seek clarifications and then identify and shortlist solution alternatives You will also contribute to unit level and organizational initiatives with an objective of providing high quality value adding solutions to customers If you think you fit right in to help our clients navigate their next in their digital transformation journey this is the place for you

Technical Requirements:

---------------------------



SOC SIEM EDR SOAR

Additional Responsibilities:

--------------------------------



Ability to work with clients to identify business challenges and contribute to client deliverables by refining analyzing and structuring relevant data Awareness of latest technologies and trends Logical thinking and problem solving skills along with an ability to collaborate Ability to assess the current processes identify improvement areas and suggest the technology solutions One or two industry domain knowledge

Preferred Skills:

---------------------


Technology->Infrastructure Security->Anti Virus, HIPS, IDS, Vulnerability Management, Patch Management->Symantec Endpoint Protection,Technology->Infrastructure Security->Security Incident and Event Management (SIEM),Technology->Infrastructure Security->SOC Operations,Technology->Security Operations->SOAR->Cortex XSOAR (Demisto)