Job Description

Project Role :

Security Architect

Project Role Description :

Define the cloud security framework and architecture, ensuring it meets the business requirements and performance goals. Document the implementation of the cloud security controls and transition to cloud security-managed operations.

Must have skills :

Cisco Identity Services Engine (ISE)

Good to have skills :

NA

Minimum

3

year(s) of experience is required

Educational Qualification :

15 years full time education



Summary: We are seeking a skilled Network Detection and Response (NDR) Engineer with expertise in Gigamon and Forescout NAC to strengthen our organization's cybersecurity posture. This role will focus on monitoring, analyzing, and responding to network-based threats, while maintaining visibility and access control across enterprise environments Roles & Responsibilities: -Deploy, configure, and manage Gigamon visibility and traffic intelligence solutions. -Integrate Gigamon with security tools (e.g., IDS/IPS, firewalls, SIEM, NDR). -Monitor network traffic for suspicious activity using NDR tools and collaborate with SOC teams on incident response. -Analyze packet captures, netflows, and mirrored traffic to identify threats and anomalies. -Work with threat intelligence feeds to correlate and enrich detection capabilities. -Deploy, configure, and administer Forescout NAC for network access visibility and policy enforcement. -Create and manage policies for device classification, posture assessment, and compliance enforcement. -Integrate NAC with Active Directory, endpoint protection, and other security platforms. -Conduct continuous NAC tuning to maintain visibility over managed and unmanaged devices (BYOD, IoT, etc.). -Act as a SME for network-based incident investigations. -Participate in root cause analysis and remediation of network security events. -Collaborate with SOC teams for event triage, alert correlation, and escalation workflows. -Maintain documentation for NDR and NAC systems, configurations, and runbooks. -Produce security dashboards and executive-level reporting on network threats and access trends. -Assist in compliance and audit activities (e.g., ISO 27001, NIST, HIPAA). Professional & Technical Skills: -Strong hands-on experience with Forescout NAC solutions. -Proficiency with Cequence for Bot protection and Cloudflare for DNS security. -Solid understanding of network security principles, VPNs, IDS/IPS, and URL filtering. -Familiarity with ITIL-based incidents, problems, and change management processes. -Ability to analyze logs and traffic patterns to identify anomalies and optimize rules. -Experience with patch management, service reporting, and compliance audits. -Strong documentation skills and attention to detail. -Experience in Forsecout NAC solution and Gigamon Network Detect and response -Experience in Bot protection and DNS security, including tools like Cequence and Cloudflare. -Experience in network security, including experience with Gigamon and Forescout NAC. -Deep understanding of TCP/IP, VLANs, firewalls, and network protocols. -Experience with NDR, IDS/IPS, and packet -updates using Cequence Bot Defense; validation of standard and emergency rule requests. -DNS policy fine-tuning, domain-based filtering, and weekly/monthly threat reporting using Cloudflare DNS. Additional Information: - The candidate should have minimum 3 years of experience in Cisco Identity Services Engine (ISE). - This position is based at our Bengaluru office. - A 15 years full time education is required.




15 years full time education