Senior Information Security Specialist

Roles & Responsibilities:

• Monitoring the system and ensure the system available 24/7.
• Maintain the best practices and security standards.
• Design and implement security solutions that protect the organization’s On-prem / cloud infrastructure, applications, and data from security threats.
• Responsible for conducting regular security assessments of the organization’s On-prem / cloud environment to identify potential security vulnerabilities and recommend appropriate remediation measures.
• Configure and maintain various security tools such as firewalls, intrusion detection and prevention systems, and security information and event management (SIEM) systems to ensure optimal protection against security threats.
• Regularly monitor the syslog’s and take corrective actions if any security breach or vulnerabilities found in the logs
• Monitoring the system and ensure the system available 24/7.
• Maintain the best practices and security standards.
• Design and implement security solutions that protect the organization’s On-prem / cloud infrastructure, applications, and data from security threats.
• Responsible for conducting regular security assessments of the organization’s On-prem / cloud environment to identify potential security vulnerabilities and recommend appropriate remediation measures.
• Configure and maintain various security tools such as firewalls, intrusion detection and prevention systems, and security information and event management (SIEM) systems to ensure optimal protection against security threats.
• Regularly monitor the syslog’s and take corrective actions if any security breach or vulnerabilities found in the logs.
• Run VAPT tools to mitigate the security vulnerabilities.
• Responsible for managing access controls for cloud resources, including user authentication and authorization, identity and access management (IAM), and network security groups (NSGs).
• Monitor the On-prem / cloud environment for security incidents and respond promptly to any security breaches or threats.
• Create and maintain security policies and procedures for the organization’s On-prem / cloud environment, including disaster recovery plans, incident response plans, and security awareness training for employees.
• Keep up-to-date with the latest security trends and best practices to ensure that the organization’s On-prem / cloud environment remains secure against evolving security threats
• Review and the apply the WAF polices to protect against DDoS and application related attacks.
• Test the WAF rules and ensure they block malicious traffic.

Qualifications & Technical Skills:

1. Min year of experience -10 years

• B.Sc. Computer Engineering or Equivalent

•     Security Incident Handling & Response

•     Security Management Frameworks

•     Firewall/IDS/IPS (Palo Alto, Fortinet, Cisco etc.,)

•     Vulnerability management (VAPT)

•     SIEM Management

•     Data Management Protection

•     Advanced Malware Prevention

•     Identity & Access Management

•     AWS:  IAM, KMS, VPC, Security Groups, Network ACLs, VPC endpoints, CloudWatch, VPC Flow Logs

•     Logging and Monitoring, SIEM, Syslog

•  CloudFront, WAF and Certificate Management       

•  Technical Certifications like CEH, Security+, CISSP etc.