Job Description :
Engineer to support administration and management of Network Security Platform, with 5+ years of working experience.
Technical Skills:
Monitoring and Management of Firewall/Intrusion detection/Prevention System – Check Point Smart Console, IBM Security Site Protector, Cisco Sourcefire, FireEye.
Experience with Enterprise Intrusion Detection / Prevention, and Network / Host-Based Malware Analysis engines like Checkpoint Threat Prevention, FireEye, Mandiant, Bluecoat, IBM ISS, RSA, McAfee, Cisco/Sourcefire, , HP Tipping Point, etc.
Demonstrated understanding of the life cycle of network threats, attacks, attack vectors and methods of exploitation with an understanding of intrusion set tactics, techniques and procedures (TTPs
Experience with and knowledge of internet/intranet networking protocols and services, TCP/IP, Routing Protocols, OSI model, defense-in-depth and common security elements
Have knowledge on analyzing packet captures, using tcpdump, Wireshark, fwmonitor, etc.
Drive process creation and improvement and develop internal Tactics, Techniques, and Procedures (TTPs) for analysis, establishing reporting criteria, structure, and operational reports
Identify security incidents through log investigation, correlation and analysis with SIEM Solutions like ArcSight, Splunk, Qradar, AlienVault, McAfee SIEM, etc.
Report and investigate on anomalies outside the expected norm.
Manage and review assigned / re-assigned /escalated incident tickets and co-ordinate with resolver group for the implementation of solution.
Business impacting incident reporting, analysis and resolution.
Reporting Skills, Operations skills in the above technologies in complex environments
Linux command line experience.
Other qualification:
Good communication skills
Strong analytical and problem-solving skills to troubleshoot and resolve network/operating system security issues
Ability to perform and interpret vulnerability assessments
Ability to administer the operations of a security infrastructure
Ability to balance, prioritize work and a good team player
Proven track record of successfully managing and executing on short term and long-term projects
Ability to set and manage expectations with key stake-holders and team members
Ability to communicate and establish rapport with a global team
Preferred experience:
Leads and/or directs the efforts of specialists on project(s) across components and/or technical areas.
Provides guidance and direction across components and acts in a consulting and/or advisory capacity.
Preferred Certifications:
CCNA/CCSA/CCSE/Cisco IPS
CISSP, GCIH, GCIA or equivalent
CEH or equivalent
Graduates with 5+ years of experience in IT