MSS Analyst

Lead Consultant (Cyber Security)

Job Summary:

The Lead consultant for Cyber Security (B2B SOC MSS) provides the advance level of support for Product Implementation & Services in the Security Operations.

In this position, the consultant will be to lead the project (technical) consultants team for successful migration/ implementation of the Cyber Security Products (and Services).

• Mini.2years of experience implementation & operations.
• The resource should have implemented at least 4-5 projects in customer environment.
• Working Knowledge of SOC/ SIEM tools and operational understanding
• Must have lead team of Security Consultants/ Analysts
• Should have sound knowledge of products & should be able to carry out the POCs, Implementation and Operations support
• Should lead the delivery of multiple projects at customer locations

• Should have knowledge of following products (with Operations and Implementation)

• DLP/ Proxy Forcepoint, Symantec, Cisco, McAfee

• Email Security Symantec, Forcepoint, Cisco
• NAC Solutions – Cisco ISE, Forcescout
• EDR/ XDR Solution – Trend Micro, Crowdstrike
• SOC SIEM Solution (Arcsight, Qradar, RSA or Seceon)

( Must have hands-on experience from any two of above)

• Product certification from any of the above products will be added advantage
• Must be able to execute strategic and tactical direction for solutions offerings
• Experience in supporting a multiple customer base systems and network environments
• Provides timely and adequate response to threats/alerts, including off-hour support.
• Develop functional specifications for integrating/ adopting requirements into enterprise target state architecture or specific application
• Collaborate with business groups to help them to identify, classify, and secure high value data
• Provide feedback via periodic reports based on rule parameters; Ability to write regular expressions
• Ability to self- direct and work independently when necessary, and clearly articulate technical concepts/ issues to both technical and non- technical peers and management
• The ability to assess security events to drive to a resolution.
• Demonstrate Understand Critical Data Types such as PII, NPI, PCI, HIPAA, etc
• Demonstrate Understanding of Mass Storage, USB, Removable Media, for example allow charge but do not allow data copy
• Excellent English communication skills mandatory
• Excellent documentation skills mandatory
• Understand reporting capabilities

Required Technical Expertise

• Process and Procedure adherence
• General network knowledge and TCP/IP Troubleshooting
• Ability to trace down an endpoint on the network, based on ticket information
• Familiarity with system log information and what it means
• Understanding of common network services (web, mail, DNS, authentication)
• Knowledge of host based firewalls, Anti-Malware, HIDS
• General Desktop OS and Server OS knowledge
• TCP/IP, Internet Routing, UNIX / LINUX & Windows NT
• Good to have industry certifications on SIEM Platform, CCNA, CEH, MCSE & Others
• Bachelor's Degree in Computer Science or equivalent required
• Good communication skills
• Strong level of customer service required