Executive Ii

**Role Identifier
**Job Title
InfoSec Analyst / Lead

**Department
Systems

**Reporting to
Manager - Systems

**Grade
P/PA

**Jobs Reporting Into
None

**Location/Unit
Head Office

**Role Description
**Job Purpose
Information Security Analyst needs to be well versed with latest security trends and have experience in working with SOC, SIEM, SOAR Platform, IBM ISIM & IGI & Understanding of firewall, NIPS, VPN, Proxy, DLP and Data Classification tools. Comfortable in working with vendor partners to complete implementations, troubleshooting the issues and closing them with RCA. Creating protection policies by interacting with employees across multiple departments and finetune them to ensure less false positives.

**Primary Responsibilities
**Business Responsibility Areas
**Key Performance Indicators
- Lead the SOC Delivery along with Partner. End to End Security Event Analysis and Troubleshooting.
- New Device Integration, Validating Current Use Cases and Improvising.
- Well Verse with EDR, UEBA, Network & Security Event Analysis.
- Next Generation SOC Evaluation and Implementation.
- Automating Security threats to rules in Firewall, WAF, Proxy using SOAR tools or Scripting
- Create Run book, Process Document for Security Events analysis.
- Lead the IBM ISIM & IGI Platform for Identity & Access Management with partner. Well verse with Technology and changes that are needed.
- Well Verse with the DLP and Data classification implementation along with creation of protection policies and fine tune them to ensure minimum false positives
- Respond and take actions on the alerts that are triggered post the implementation of policies.
- Research and assess new threats and security alerts and recommends remedial actions to ensure network security design is resilient enough to deal with the latest threats and attacks scenarios.
- Conduct routine hardware and software audits of all supported systems to ensure compliance with established standards, policies, procedures, and requirements
- Maintain proper change management documentation for all hardware and software modifications
- Effectively communicate with Security Operations Center, key business stakeholders and management regarding information security incident events and trending
- Maximize security awareness, governance, risk and compliance in the organization to ensure and safeguard the business and the users.
- Perform security log analysis during Information Security related events, identifying and reporting possible security breaches, incidents and violations of security policies
- Implement & Sustain Cloud Security Solutions. (CSPM)
- Knowledge of Cloud Technologies and Basic Administration
- Quality of delivery
- Adherence to KPIs, timelines, security standards, compliance norms
- Technical expertise in the related area of work
- Training effectiveness

**Scope of Work
**a) Financial Scope **(Range of financial spend):
NA

**b) People Management Scope **(Range of no. of Direct/ Indirect Reports):

- Multiple partner teams & Internal IT Teams**c) Geography Coverage (Country-wide/ State-wide / Area-wide)
- Country-wide (Includes International locations)**d) Corporate Coverage (Company-wide / Business Unit or Function-wide / Sub-function-wide / Other):
- Company-wide**Key Interactions
**Internal
- IT team & Other Functions- User Functions (Sales / Marketing / Commercial / Accounts / HR etc.) in Asian Paints Limited, Joint Ventures, International Units, Acquired Businesses etc. consuming infrastructure services**External
- Software Vendors- Implementation Partners / System Integrators / Support Desk**Role Requirements / Specifications
**Qualifications
- Essential- B.E. / B.TechMust have demonstrated knowledge and experience with **four or more **of the following:

- Managing SOC & MDR Operations
- Evaluation & Implementing SOC
- Manage IBM ISIM & IGI Platform
- DLP & Data classification
- Vulnerability Assessment
- Network/System Intrusion Detection or Prevention Systems
- Network architecture best practices
- VPN Communication Protocols
- WAF
- Windows Server Operating Systems
- Linux
- Wireless Networking
- Security threat and attack countermeasures
- Security events handling and resolving
- Forensic Analysis
- Desired- SOC related Certification- Certified Ethical Hacker- Good to Have- Computer Hacking Forensic Investigator**Previous Experience
- Essential- SOC- ISIM- Desired- Knowledge of Various Security tools**Functional Competencies
- Critical Thinking and Analytical skills
- Strong troubleshooting and problem-solving skills
- Team player with ability to work autonomously
- Ability to prioritize, and de-prioritize work as required

**Behavioral Competencies
BE
1.00
3.00