Technical Lead-Cybersecurity
KeySkills
-
Incident Response (IR),
Threat Hunting,
Root Cause Analysis (RCA),
Playbook Execution and Automation,
Alert Tuning and Detection Rule Optimization,
Zscaler,
Wiz,
CyberArk,
Vulnerability Management and Remediation,
SOC Workflow and Process Improvement,
Documentation and Compliance Reporting,
Mentoring and Training L1 SOC Analysts.,
Job Description
- Roles and Responsibilities:
- Deep-dive into incidents escalated from L1 to confirm true positives.
- Execute containment and remediation actions (e.g., block malicious IPs, isolate endpoints, disable compromised accounts).
- Lead playbook execution, enrichment, and automation of incident workflows.
- Perform Root Cause Analysis (RCA) and escalate complex cases to L3 when necessary.
- Provide remediation guidance to IT/business teams and support incident recovery.
- Tune alerts and detection rules to reduce false positives and improve accuracy.
- Leverage tool-specific expertise on Zscaler, Wiz, CyberArk for incident handling.
- Participate in major incident response (IR) and threat hunting activities.
- Review vulnerability scan results and recommend remediation/mitigation steps.
- Identify SOC workflow/process improvement opportunities and suggest enhancements.
- Maintain detailed documentation and compliance-ready reports.
- Mentor and support the upskilling of L1 SOC Analysts.
Job Details
Experience :
3 To 5
Number Of
Vacancies :
10
Job Type :
Permanent
Industry Type : IT/Software
Salary
:
6 Lac - 8 Lac
P.A
Education Summary
UG :
Any UG Degree
PG :
Any PG Degree
Contact Details
Contact
Person :
NA
Contact
Number :
1206629494
e-mailId :
rashmi.mishra@birlasoft.com
Address :
Birlasoft (India) Ltd.8th Floor, A - Wing, Prince Infocity II,No.283 / 4, Rajiv Gandhi Salai (OMR),Kandanchavadi, Chennai,Tamilnadu, India
Office Location
Central Jakarta No 1234, Jakarta, IndonesiaSenior Project Manager
Experience -
15 to 17
Key Skills -
Project Management,
Program Management,
Informatica,
CyberArk,
Checkmarx,
Qualys,
Cisco ACI,
Palo Alto Email Security,
AWS Security,
Azure Security Center,
Cloud Security Architecture,
Network Security,
Application Security,
Vulnerability Management,
Identity and Access Management,
Security Compliance,
Risk Management,
DevSecOps,
Infrastructure Security,
Bioinformatics (Nice to have),
PMP Methodologies,
Agile and Waterfall,
Stakeholder Communication,
Leadership,
Team Management,
Security Audits,
Regulatory Standards,
Devsecops - Security Engineer - Splunk Expertise
Experience -
0 to 1
Cloud Engineer
Experience -
0 to 2
Key Skills -
Azure,
Google Cloud Platform (GCP),
Multi-cloud management,
Cloud operations,
L3/L4 support,
Windows server administration,
Linux server administration,
Cloud networking,
Virtual networks,
VNETs,
Subnets,
NSGs,
Firewalls,
VPN,
Routing policies,
Load balancers,
Automation scripting,
PowerShell,
Bash,
Ansible,
Terraform,
Server patching,
Performance tuning,
Monitoring tools,
Logging solutions,
Incident management,
Root cause analysis (RCA),
Configuration management,
Cloud security,
Troubleshooting,
Documentation,
Infrastructure management.,
Technical Lead-Cybersecurity
Experience -
3 to 5
Key Skills -
Incident Response (IR),
Threat Hunting,
Root Cause Analysis (RCA),
Playbook Execution and Automation,
Alert Tuning and Detection Rule Optimization,
Zscaler,
Wiz,
CyberArk,
Vulnerability Management and Remediation,
SOC Workflow and Process Improvement,
Documentation and Compliance Reporting,
Mentoring and Training L1 SOC Analysts.,