Listing Description
At Navisite, celebrating our employees and investing in their well-being and development is not just a priority or an initiative - it's woven directly into our company fabric. Our mantra and unofficial corporate hashtag #SoMuchGood is all about recognizing our team's commitment and achievements, both inside and outside the office. It's that theme that has driven a host of programs at Navisite - it's who we are. What we do is simple: We work hard, we have fun, we give back to the community and we never take our eye off the goal - creating a modern cloud MSP with a global, talented team of employees. Join us and be part of our team!!
Role - Cyber Security Consultant
Work Mode – Remote
Experience Range – 8 to 10 yrs
Qualifications:
•Minimum 8 years of experience Incident Response experience (identifying, investigating and responding to complex attacks)
•Should hold an bachelor’s degree in Information Technology or related field
Preferred Skills & Experience:
• Excellent knowledge of penetration testing tools, open sources or professional tools
•Knowledge of network data flows, ports, protocols, and other network and application services/technologies.
•Exposure to URI encoding attacks, OWASP Top 10 and MITTRE framework.
•Working experience on SIEM technology (IBM/Alert Logic/HP/LogRhythm/ Arcsight /Qradar), File Integrity Monitoring (FIM)- Trip Wire, VA/PT -Qualys, Cylance, Sophos, IDS/IPS, AV, Email Gateway, etc.
•Excellent knowledge of Linux and windows Kernels and working knowledge ofFuzzing technologies, reverse engineering, threat hunting and malware analysis.CSA/CISA/CEH/CISM/GSEC/Security+ (Minimum 2 Certification)
•Proficiency in scripting languages is a plus (Python, shell etc.) Experience in designing, implementing and measuring relevant security technology.
The Cyber Security Consultant will be responsible for work in a team (24x7) of security experts. The candidate will help deliver the vision of redefining traditional SOC operations using automation, orchestration and analytics. Responsibilities include but are not limited to the oversight of day-to-day operations for the Next Generation delivery team, maturing processes and driving new innovations. The Security Consultant will also be responsible for maintaining mature service delivery methodologies for their practice areas.
Responsibilities:
•Implementation, Knowledge on SIEM technology (IBM/AlertLogic/HP/LogRhythm), File Integrity Monitoring (FIM), VM Tools (Kenna/Qualys) etc..Knowledge of Information security life cycle, policies, process, and standards.
•Participation in SOC emergency on call rotation escalated up from 24 x 7 SOC monitoring
•Investigate incidents using SIEMs, packet captures, reports, data visualization, and pattern analysis tools.
•Excellent knowledge of penetration testing tools, open sources or professional tools.
•Excellent knowledge of the web application penetration testing tools like Burpsuit, Arachni, Grabber etc
•.Exposure to URI encoding attacks, OWASP Top 10 and MITTRE framework.
•Excellent knowledge of Linux and windows Kernels and working knowledge of Fuzzing technologies, reverse engineering, threat hunting and malware analysis.
•Excellent knowledge of different forensic tools like Encase, FTK and etc.
•Candidate must have demonstrated experience in providing excellent customer support services and an aptitude to work directly with Minimum of 3 years of Incident Response experience (identifying, investigating and responding to complex attacks)
•Experience with investigative technologies such as SIEM, packet capture analysis and memory analysis tools
•Strong understanding of threat landscape in terms of the tools, tactics, and techniques of threats employing both commodity and custom malware
•Current knowledge of security threat intelligence and recent attack vectors
•Strong host forensics analysis skills
•Knowledge on ITIL processes, respond to incidents by collecting, analyzing and preserving digital evidence to assist with the Incident Responders in remediation of critical information security incidents.
•Improve and challenge existing processes and procedures in a very agile and fast-moving information security environment
•Ability to write technical documentation and present technical briefings to diverse audiences.
•Responding to alerts from the various monitoring/detection systems and platforms within defined SLAs.
•Research technologies and lead POC development, to ensure feasibility
•Ensuring conformity to corporate security and compliance objectives.
•Identifying and implementing service improvement opportunities.
•Responsible for informing the ‘business impact’ of security within the team
•Promptly report security weakness or incidents to the Practice Managers/Leads
•Candidate must ensure that compliance with data protection legislation under the DPA, EU GDPR, any other applicable data protection legislation
Navisite is an equal opportunity employer. We celebrate diversity and we are committed to creating an inclusive environment for all employees. Navisite does not discriminate in employment on the basis of race, color, religion, sex (including pregnancy and gender identity), national origin, political affiliation, sexual orientation, marital status, disability, genetic information, age, membership in an employee organization, parental status, military service, or other non-merit factor.
Internal Applicants – No sponsorship available / External Applicants – Sponsorship not guaranteed. Any potential sponsorship depends on a number of factors, including but not limited to the local candidate pool and can vary from year to year.
Listing Details
- Citizenship: Not Provided
- Incentives: Not Provided
- Education: Not Provided
- Travel: Not Provided
- Telework: Not Provided