Cyber Security solution Architect

Responsibilities

• Need to front end the security Solution consultation from HCL CSFC end with the customer.
• Provide thought leadership during cybersecurity incident response investigation.
• Use Case and Content development on SIEM domain to efficiently position the SIEM service.
• Handle the complex incidents and problems under the scope for support and drive the team for an effective delivery from onsite/offshore model.
• Reviewing current system security measures and recommending and implementing enhancements
• Conducting regular system tests and ensuring continuous monitoring of network security
• Developing project timelines for ongoing system upgrades
• Promptly responding to all security incidents and providing thorough post-event analyses

Experience

• Extensive experience in information security and/or IT risk management with a focus on security, performance and reliability
• Hand on experience on Exabeam and handled transformation on this product and technologies.
• Documenting investigation activities to provide enhanced intelligence to the team and other cyber security activities
• Strong analytical skills, able to leverage complex data to identify opportunities, recognize problems, and draw logical conclusions.
• Written and verbal communications skills with the demonstrated ability to build effective relationships with peers and communicate at within the organization.
• Ability to think with a security mindset with strong IT background with in depth knowledge of several key security practice areas: application security; network security, infrastructure security.
• Working knowledge with security tools such as NAC, Antivirus, File Integrity Management, Intrusion Prevention, Network & Application Firewalls, Web Proxy, Logging & Monitoring and DLP
• Experience with security event response from key security products and services (network traffic analysis, windows event analysis, etc.)
• Conduct root cause analysis and post review events
• Maintain relevant team documentation and standards

Desirable Certifications

• Certified Information Systems Security Professional (CISSP)
• Certified Information Security Manager (CISM)
• CCSP / CCSA / CCSE / JNCIA /JNCIS certifications are preferred.
• Arcsight / QRadar / Splunk or an RSA Net witness certification on Expert level.

Company Information hidden please Login to view details