Our Exciting Opportunity
We are now looking for a Security Engineer professional. This job role is responsible for tracking, coordination, support, management, and execution of security related activities to ensure that services provided to customers are continuously available and performing to Service Level Agreement (SLA) performance levels.
What you will do,
Incident Management
• Respond after hours (on-call support)
• Coordinate and conduct event collection, log management, event management, and compliance automation
• Respond to day-to-day security change requests related to security operations
• Conduct security research and intelligence gathering on emerging threats and exploits
• Create new rules based on identified scenarios
• Perform postmortem analysis on logs, traffic flows, and other activities to identify malicious activity
• Security analysis (networking devices and operating systems, endpoint analysis, network attacks)
• Work with the various Technical Authority teams to respond to and resolve security incidents effectively and quickly
• Provide Root Cause Analysis for security incidents, and outages / impairments related to security tools
• Administer authentication and access controls, including provisioning, changes, and deprovisioning of user and system accounts, security/access roles, and access permissions to information assets
Tools Integration
• Integration of nodes to security tools (SIEM, VA, IAM, etc.)
• Deploy content (policies, signatures, parsers or rules) for the security infrastructure
• Vendor Communications
• Work with SIEM, IPS/IDS, IAM vendors for application related issues
Process Improvement
• Mentor level 1 analysts to improve detection capability within the SOC
• Prepare Use Cases & MOPs on identified scenarios
• Create, maintain and improve technical operational work instructions
• Drive continuous process improvements by providing inputs on the current processes and possible improvement opportunities
Governance and Reporting
• Business intelligence reporting based on SOC and customer needs
• Identify and report risks related to security
• Perform periodic reporting and when applicable, present to management and/or the customer’s security team
To be successful in this role, you must have:
• Strong knowledge of information security
• Working knowledge of SIEM tools (such as McAfee ESM, QRadar, ArcSight, Splunk, etc.), scanning tools (Nessus, Qualys, IBM AppScan, etc.) and PAM tools (BeyondTrust, CyberArk, etc.)
• Knowledge of both Linux-based and MS Windows-based system platforms with a strong technical understanding and aptitude for analytical problem-solving
• Understanding of enterprise computing environments, distributed applications, and a strong understanding of TCP/IP networks, along with available security controls (technical & process controls) for respective layers
Key Qualifications:
• Graduate in Computer Science or similar
• 5 to 11 years' experience with at least 2 years of experience in IT and 2 years in security
• ITIL certification, CCSP, OSCP, Security +, CCNA Security or similar will be an advantage
Why join Ericsson?
At Ericsson, you´ll have an outstanding opportunity. The chance to use your skills and imagination to push the boundaries of what´s possible. To build solutions never seen before to some of the world’s toughest problems. You´ll be challenged, but you won’t be alone. You´ll be joining a team of diverse innovators, all driven to go beyond the status quo to craft what comes next.
What happens once you apply?
Click Here to find all you need to know about what our typical hiring process looks like.
Encouraging a diverse and inclusive organization is core to our values at Ericsson, that's why we champion it in everything we do. We truly believe that by collaborating with people with different experiences we drive innovation, which is essential for our future growth. We encourage people from all backgrounds to apply and realize their full potential as part of our Ericsson team. Ericsson is proud to be an Equal Opportunity Employer. learn more.
Primary country and city: India (IN) || Noida
Req ID: 755656