Security Analyst (UEBA)

NMS Consultant

job responsibilities:-

● worked on snypr which is a big data based security analytics tool which includes siem and ueba and which detects advanced cyber threats. it combines log management.

● worked on siem implementation includes incident management, siem

administration/installation/configuration, use case management, threat models and policy configurations, correlation rules, data source onboarding, log analysis and events monitoring, dashboard designing, reports and workflows.

● handling incidents like phishing, ueba, networks, endpoints, applications, banks proprietary app malwares, apts etc. with critical, medium and high severity in splunk enterprise security.

●perform weekly threat hunting exercises via splunk by analyzing the logs (apis, waf, f/w, proxy, av, ad, endpoint, etc.) and prepare an executive summary report with all the information’s iocs,mitre attack ttps.

● setup secure syslog (tls) on the rhel7 platform.

● setup firewall rules on rhel7 platform. knowledge on waf.

● strong understanding of network security terminologies like dlp, ids, ips, casb application security, endpoint security, data protection.

● knowledge on networking concepts, protocols and networking devices.

● knowledge on vulnerability management

● knowledge on splunk.

certification :-

ceh v9 | splunk enterprise certified architect | comptia security certified

• Experience

  2 - 8 Years

• No. of Openings

  5

• Education

  B.C.A, B.E, B.Sc

• Role

  Security Analyst

• Industry Type

  IT-Hardware & Networking / IT-Software / Software Services

• Gender

  [ Male / Female ]

• Job Country

  India

• Type of Job

  Full Time

• Work Location Type

  Work from Office