IT

Experience Required: 5-7 Yrs

Requirement: Candidate only from the cyber security domain

Location: Bangalore (hybrid)

A Senior Security Analyst has a clear history of successful contribution to technical projects. They are driven, curious, and results oriented. They are able to manage competing priorities as they relate to improving the value of our data and constantly challenge the status quo. With additional experience and exposure to advanced technical projects, they are capable of becoming a Tech Lead within 2 years.

Basic Qualifications:

5 -7 years of professional experience as a Software Developer or equivalent role Experience

consists of projects contributing in either Python or YAML

Experience one or more of the following:

  • Familiarity with Snort/Suricata rules
  • Familiarity with understanding Network signatures/detections
  • Familiarity with IDS/IPS, Proxy, Firewall, SSE, VPN, and other network-related products and
  • vendors
  • Familiarity with premises Active Directory architecture, including domains, trusts, Organizational
  • Units (OUs), and Group Policy Objects (GPOs).
  • Understanding of AD telemetry, including event logs, monitoring, and analysis.
  • Professional certifications in Security and/or Networking are desired (e.g. CISSP, GNFA, GCFA, GCFE, GREM).

Nice to have: A clear history of technical influence (public conference talks, papers, etc)

Nice to have: Experiencing working in a Security Operations Center (SOC) or development

experience supporting a SOC.

Nice to have: A clear history of learning and skills development. Regularly helps developers develop their skills in a variety of ways.

Nice to have: B.Sc. in Computer Science.

About the role:

You’ll be working as an analyst on our observation management team, responsible for ensuring the scalability of the data sources used for presenting actionable detections to our Security Services teams and customers.

Some of your day-to-day responsibilities will be:

  • Optimize data retention and storage to minimize costs while maintaining security efficacy.
  • Build and improve processes for determining data value with input from cross-functional teams.
  • Research and develop expertise in the various threat surfaces and telemetry available for them.
  • Developing and maintaining Python and YAML-based pattern matches, software, and systems.
  • Work with team members to develop novel reductions and continuously tune existing ones.
  • Build runbooks, reports and supporting material for detection surfaces.
  • Writing clean, efficient, and reusable code in Python.
  • Conducting code and configuration reviews and providing constructive feedback to ensure quality and maintainability.
  • Optimizing application performance and ensuring scalability.
  • Understand the product and how Security Services delivers the service.
  • Develop professional expertise, apply company policies and procedures to resolve a variety of issues.
  • Determine a course of action based on guidelines, and modify processes and methods as required.
  • We value a culture of sharing, so every team has the opportunity to share their work with the entire department during our monthly R&D Demos.
  • Once a year we hold a department-wide Hackathon, teaming up across all R&D teams over four days to collaborate and build cool ideas outside the normal project scope.
  • While innovation is the focus, some of these ideas do make it into our products.

To apply for this job email your details to maitreyi.mounissamy@zyoin.com