Lead Engineer - Information Security

As a Lead Engineer Information Security, you will play a crucial role in our Security Operations team, focusing on Cyber Security and SOC Operations. Your responsibilities will include: - Strong understanding of cyber-attacks, threat vectors, risk & incident management - Monitoring, analysis, and trending of security logs from diverse security devices - Handling SIEM alerts, configuring log sources, and creating use cases - Managing security tools such as IDS/IPS, Firewalls, EDR, Email Security, etc. - Performing threat & vulnerability analysis and providing security advisory services - Analyzing and responding to undisclosed software & hardware vulnerabilities - Investigating, documenting, and reporting information security issues & emerging threats - Coordinating with threat intelligence analysts on open-source activities - Supporting InfoSec initiatives as required In terms of technical knowledge, you should have experience with SIEM (preferably IBM Q-Radar), network/security devices like Firewalls, IPS, Web Gateways, Email Security solutions, EDR tools (e.g., Microsoft Defender, CrowdStrike), Packet Analysis, HIPS/NIPS, Windows, Linux, Unix operating systems, TCP/IP, and Internet protocols. A basic understanding of Cloud Infrastructure (Azure/AWS) is desirable. To qualify for this role, you should have a minimum of 5+ years of experience in Cyber Security / SOC Operations and experience with IBM Q-Radar, Microsoft Defender, CrowdStrike EDR is a plus. Knowledge of Azure/AWS Cloud is desirable, and certifications such as CEH, GCIH, ECIH are preferred. Your mandatory skills should include Penetration Testing, API Testing - Mobile & Web, SIEM, IDS/IPS, Firewalls, EDR, Email Security, Packet Analysis, HIPS/NIPS, Windows, Linux, Unix, TCP/IP, Internet protocols, and Cloud Infrastructure. Join us if you are a highly skilled, motivated, and detail-oriented individual passionate about protecting enterprise systems from cyber threats and thrive in a fast-paced SOC environment. As a Lead Engineer Information Security, you will play a crucial role in our Security Operations team, focusing on Cyber Security and SOC Operations. Your responsibilities will include: - Strong understanding of cyber-attacks, threat vectors, risk & incident management - Monitoring, analysis, and trending of security logs from diverse security devices - Handling SIEM alerts, configuring log sources, and creating use cases - Managing security tools such as IDS/IPS, Firewalls, EDR, Email Security, etc. - Performing threat & vulnerability analysis and providing security advisory services - Analyzing and responding to undisclosed software & hardware vulnerabilities - Investigating, documenting, and reporting information security issues & emerging threats - Coordinating with threat intelligence analysts on open-source activities - Supporting InfoSec initiatives as required In terms of technical knowledge, you should have experience with SIEM (preferably IBM Q-Radar), network/security devices like Firewalls, IPS, Web Gateways, Email Security solutions, EDR tools (e.g., Microsoft Defender, CrowdStrike), Packet Analysis, HIPS/NIPS, Windows, Linux, Unix operating systems, TCP/IP, and Internet protocols. A basic understanding of Cloud Infrastructure (Azure/AWS) is desirable. To qualify for this role, you should have a minimum of 5+ years of experience in Cyber Security / SOC Operations and experience with IBM Q-Radar, Microsoft Defender, CrowdStrike EDR is a plus. Knowledge of Azure/AWS Cloud is desirable, and certifications such as CEH, GCIH, ECIH are preferred. Your mandatory skills should include Penetration Testing, API Testing - Mobile & Web, SIEM, IDS/IPS, Firewalls, EDR, Email Security, Packet Analysis, HIPS/NIPS, Windows, Linux, Unix, TCP/IP, Internet protocols, and Cloud Infrastructure. Join us if you are a highly skilled, motivated, and detail-oriented individual passionate about protecting enterprise systems from cyber threats and thrive in a fast-paced SOC environment.