Job Description :
Job Description: Security Analyst
Department: Information Technology
Location: Head Office (HO) Mumbai.
Position Overview
We are looking for a Security Analyst to join our Information Technology department. In this role, you will monitor and analyze security events, investigate security incidents, and ensure the integrity of our systems and networks. You will also collaborate with cross-functional teams, provide security awareness training, and assist in the development and implementation of security measures to protect our infrastructure from evolving threats.
Key Responsibilities
1. Continuously monitor security events and alerts from firewalls, WAF, cloud platforms, M365, antivirus, system logs, and other relevant sources.
2. Analyze and investigate security incidents to identify their cause and impact, recommending appropriate remediation actions.
3. Collaborate with teams across the organization to integrate security requirements into the development lifecycle of new applications and systems.
4. Provide security awareness training for employees and foster a culture of security throughout the organization.
5. Conduct regular reviews of security configurations on network devices, servers, applications, and cloud environments to ensure compliance with security policies and industry standards.
6. Generate detailed reports and metrics on security incidents, vulnerabilities, and compliance for management and stakeholders.
7. Implement and monitor security policies, procedures, and controls to mitigate risks and improve the organization’s security posture.
8. Participate in incident response activities, including containment, eradication, and recovery efforts during security breaches.
9. Develop and maintain playbooks, runbooks, and standard operating procedures (SOPs) for incident detection and response.
10. Keep up-to-date with emerging threats and security technologies through ongoing research and learning.
11. Assist in the management and optimization of security technologies (e.g., DLP, CyberArk PAM, antivirus, etc.) to ensure their effectiveness.
12. Take on Project Manager responsibilities for information security-related projects.
Qualifications and Experience
Educational Qualification
- Any Graduate
Experience
- Minimum of 2-3 years of experience in IT security roles, with hands-on experience in threat detection, incident response, and vulnerability management.
Profile Requirements
- Experience conducting risk assessments and developing mitigation strategies.
- Strong problem-solving skills and the ability to analyze complex security issues and recommend effective solutions.
- Experience documenting security incidents, procedures, and best practices.
- Exceptional written and verbal communication skills, with the ability to convey technical information to both technical and non-technical stakeholders.
Competency Requirements
Technical Skills
- Proficiency in administering and securing operating systems (Windows, Linux).
- Strong understanding of networking concepts and protocols, including TCP/IP, DNS, DHCP, and VPN.
- Experience with penetration testing tools and techniques.
- Knowledge of cloud security principles and practices, particularly in Azure.
- Familiarity with SIEM, firewalls, WAF, cloud platforms, M365, antivirus, PAM, and related security technologies.
Behavioral Skills
- Strong interpersonal skills and team-building abilities.
- Effective communication, problem-solving, and self-management skills.
- High levels of responsibility, accountability, and a positive assertiveness in all tasks.
- Open to change and new ideas, fostering a collaborative and adaptive work environment.