Job Description

Description: About UPL: UPL is focused on emerging as a premier global provider of total crop solutions designed to secure the world\'s long-term food supply. Winning farmers hearts across the globe, while leading the way with innovative products and services that make agriculture sustainable, UPL is the fastest growing company in the industry. Our successes in the field add up to powerful financials. UPL delivers results from protecting crops that translate into attractive investor value. Based on the recognition that humankind is one community, UPL\'s overarching commitment is to improve areas of its presence, workplace, and customer engagement. Our purposeis \'OpenAg\'. An Open agriculture network that feeds sustainable growth for all. No limits, no borders . JOb Responsibilities: Configure and monitor SIEM platform and investigate security alerts. Serving as an escalation point to provide triage and response guidance. Managing cybersecurity incidents, including identification, containment, eradication, and remediation Assisting in the development of new use-cases in the SIEM alongside the Threat Detection Operations and Security Engineering teams Developing processes and procedures for incident response to help standardize Detection & Response activities Perform Root Cause Analysis to determine preventive action plan. Implement and configure playbooks Leveraging cyber threat intelligence indicators provided by the CTI team to help enrich detection and response Performing threat hunting activities using data collected from within the UPL environment Review and make recommendations to provide adequate levels of IT security in line with best industry practice and/or in response to new cyber threats. Correlates network, cloud and endpoint activity across environments to identify attacks and unauthorized use Provides users with incident response support, including mitigating actions to contain activity and facilitating forensics analysis when necessary REQUIRED EDUCATION AND EXPERIENCE: B.Tech/M.S. with specialization in IT/Information Security from Premier Institute. Have at least 4-8 years of experience in cybersecurity, with a focus on detection and response to malicious activity using log data from systems, network devices, and security tools Have experience with Threat Analysis, Security Operations Center, Security Incident & Event Management, Incident Response, Cyber Kill Chain Framework, Cyber Threat Hunting, Vulnerability Assessment, PCAP Analysis, Have experience with cybersecurity tools and software, E.g. WAF, SIEMs, IPS/IDS, Firewalls, Syslog, Cloud Security tools Server Security, EDR tools Quick learner with strong problem solving and troubleshooting skills. We are one team, for maximum impact. One team with shared goals. We all play for the team, and no one plays against the team. We have a laser-like focus on what our customers need and want, on anticipating their future needs and on how we can create innovative solutions and experiences for them.

Monster