Security Orchestration, Automation And Response Job in Vfindsolutions Pvt Ltd

Special Skills: SOC Process, Linux, SIEM, Python or JavaScript, Information Security Role: The resource would be responsible for the overall deployment strategy at the customer s environment. This includes review of processes, design of use cases, and consultation on the different aspects of Demisto usage by the enterprise functions. As such, these profiles require extensive experience in the Cyber domain, hands-on experience and knowledge on how SOC operates, and good understanding in IR processes. They also need to be technical, but not necessarily coders. In addition, they (as anyone on the team) will need to be with excellent communication skills as most of their work us customer-facing. Skills & Requirements: Incident response experience and prior experience actively participating in the containment of incidents Experience with handling analysis/monitoring using any SIEM or in SOC. Experience in any security function and knowledge of various security technologies and domains. Experience providing technical expertise regarding the defense of company information systems and networks Knowledge of initiating computer incident handling procedures to isolate and investigate potential network information system compromises Knowledge performing malware and/or forensic analysis as part of the incident management process Experience identifying risks to computer systems and making written and verbal remediation recommendations to leadership Experience supporting incident escalation, assessing probable damages, identifying damage control and remediation, and assisting in developing courses of action Experience assisting with the implementation of counter-measures or mitigating controls Experience in python/JavaScript Knowledge and Experience in any Automation is a plus. Knowledge of API s, JSON and Linux administration Knowledge of Demisto Security Orchestration Platform Develop accepted and defined playbooks Develop basic customs scripts as part of playbooks or workflow Understanding of Demisto UI Configurable components Understanding of Using the integrations