EMC networker-Cyber Recovery - Data protection

LTIMindtree · Coimbatore, Tamil Nadu, India

Full-time · Senior · Posted 10 days ago

Security Monitoring Incident Response
Monitor security s using SIEM EDR and XDR tools
Investigate and respond to security incidents end-to-end including containment and remediation
Lead post incident analysis and document lessons learned

Threat Detection Threat Hunting
Perform proactive threat hunting using logs endpoint telemetry and network data
Develop and tune detection rules aligned with MITRE ATTCK
Convert threat hunting findings into new detection use cases

Vulnerability Exposure Management
Conduct vulnerability scans and assess risk severity
Track remediation with infrastructure and application owners
Validate fixes and ensure closure within defined SLAs

Security Engineering Hardening
Implement and maintain security baselines for Windows Linux Active Directory O365 and cloud platforms
Harden endpoints servers network devices and cloud workloads
Support purple team and security validation exercises

Security Tools Platforms
Operate and tune tools such as SIEM SOAR Microsoft Sentinel Splunk
EDR XDR Microsoft Defender CrowdStrike Firewalls IDSIPS WAF
Cloud security platforms

Governance Risk Compliance Support
Support audits and compliance activities aligned to ISO 27001 NIST CSF PCI DSS and regional regulations
Prepare security evidence reports and dashboards for management
Documentation Reporting
Maintain incident reports runbooks dashboards and operational metrics MTTD MTTR
Provide executive level summaries of security posture and incidents

Required Qualifications Experience
7-10 years in Cyber Security Operations or Incident Response roles

Technical Skills
Strong hands-on experience with SIEM EDR firewalls vulnerability management tools
Knowledge of Windows Linux networking and cloud security concepts
Frameworks
MITRE ATTCK NIST ISO 27001
Optional Defender mail security DLP Imperva DAM

Scripting Preferred
PowerShell Python or KQL for automation and detection engineering

Preferred Certifications
CISSP CISM CISA
GCIA GCIH GCED
Microsoft SC200 AZ500
CompTIA Security CySA

Skills

Mandatory Skills : EMC Networker

Sign up to apply