Job Description

Participate with the matrix security team during Security Incidents and Investigations; work with internal teams to resolve security issues arising from investigations and incidents and conduct post-mortems to ensure issues are properly remediated; participate in developing structural/design changes if necessary to advance the security posture of Edifecss public and private cloud environment and the SaaS service.
Participate in the security operations teams vulnerability management, threat intelligence, architecture, engineering, and active Dfense activities for the organization. This requires hands on security work to manage operational security service development and deployment in addition to investigative workloads associated with network, system, application security and forensic activities
Participate and respond to audits as well as Defensive Engineering (Blue Team) and Offensive Engineering (Red Team) exercises.
Key Responsibilities:
Recommend methods for vulnerability detection and remediation and maintain vulnerability testing
Perform network-based analysis, malware analysis and threat intelligence analysis
Design and develop scripts, frameworks and tools required for facilitating and executing undetected attacks while developing plans on remediation
Configure and troubleshoot security infrastructure devices
Work with internal teams to resolve security issues arising from investigations and incidents and conduct post-mortems to ensure issues are properly remediated
Develop technical solutions and new security capabilities and automate repeatable tasks.
Assist in maintaining end-to-end customer cloud security experience

Assist in mentoring security engineers and lead cross-functional teams to accomplish your goals

Desired Skills:

Bachelor's degree in computer science, information technology, or a related discipline.
Minimum 6 years experience in IT & 3 years in Cloud Security. Strong industry experience relevant to Cloud Service Providers.
3 years of experience leading penetration testing, application testing, and red/blue team engagements.
Demonstrated experience with detection, dwell time and lateral movement capabilities.
Recent experience with security tools, such as Nmap, Metasploit, Kali Linux, Burp Suite Pro etc., as well as various other commercial and self-developed testing tools.
Excellent understanding of current, and emerging cybersecurity threats. Excellent understanding of networks, cloud hosting models and IT infrastructure.
Minimum 3 years experience working in a 24x7 SOC Team and buildout/use of industry standard EDR/SOC/SIEM platforms and various security applications.
Knowledge in security systems, including firewalls, intrusion detection systems, antivirus software, authentication systems, log management, content filtering.
Solid understanding of the secure Software Development Lifecycle (sSDLC) best practices to include, but not limited to in IT and IT security testing methods and metrics, penetration testing, threat hunting, system security monitoring, incident response, technical policy monitoring, familiarity with Enterprise Risk Management, and internal/external audit principles and practices.
Education: Any Graduate
Industry: IT-Hardware/Networking

Skills Required