Senior Analyst-IT & Information Security_1705

Provide consultancy solution within the area of Detection and Response. This may be a business/functional area and/or a particular technology.  Also develop and/or promote technical solutions which support the business requirements within the area of cyber security. Should be responsible for specific deliverables in relation to IT development or support or may lead the technical activity within the area of specialism.

• Monitor security systems and tools to detect and respond to cyber threats and incidents in a timely manner.
• Analyse and investigate security events to determine the root cause and impact of potential security incidents.
• Develop and implement threat detection and response strategies to proactively defend against cyber threats.
• Collaborate with cross-functional teams to coordinate incident response activities and mitigate security risks.
• Document and communicate security incidents, vulnerabilities, and remediation efforts to stakeholders.
• Stay current with the latest cyber threats, attack techniques, and security technologies to enhance detection and response capabilities.
• Contribute to the continuous improvement of security monitoring and incident response processes and procedures.
• Involve/participate/contribute/lead workstreams on engagements related but not limited to Detection and Response including endpoint detection and response.
• Perform analysis and diagnosis of client issues related to technology configuration and setup as well as procedural or process challenges.
• Partner with the Security Operations Centre to troubleshoot and resolve any potential security threats outlined in the supported tools.
• Coordinates with internal and external stakeholders for effective service delivery
• The Vendor Management Organization - Interacts with vendors, service providers, consultants/advisors and professional organizations.
• Adhere to SLA for request and security management tickets.
• Train and guide junior engineers and provide adequate support whenever needed.

• Quickly absorb and diagnosis communication challenges within and across work teams.
• Clearly and professionally communicate with client personnel to understand and manage expectations, gather information, and present and deliver results.
• Maintain Standard Operating Procedures (SOP) for the managed technologies and operations.
• Undergo in internal and external audits and support for best practices to up to date with security.
• Follow the organization’s change management process to adhere to the process integrity.
• Able to work effectively with other groups and teams or Operating Entities across Allianz business.
• Proven experience in cyber security, threat detection, and incident response
• Strong understanding of network security, malware analysis, and security operations
• Familiarity with security information and event management (SIEM) tools, EDR, DLP and relevant technologies
• Relevant certifications such as Certified Incident Handler (GCIH), Certified Ethical Hacker (CEH), or similar
• Excellent analytical, problem-solving, and communication skills
• Ability to work effectively in a fast-paced and collaborative environment.

Must Have:

Qualification:

• University Graduate degree (Btech, B.E)
• Excellent command over written and spoken English (mandatory)
• Certification like CEH
• ITIL Foundation certification (preferred)

Primary Skills :

• Working experience of Windows, Linux/Unix tools, architecture, and security configurations/monitoring techniques
• Good Experience in any of the end point security solutions (required)
• Technical experience working with advanced threat detection solutions (required)
• Good knowledge and work experience on the below technologies.

• Symantec Endpoint Protection Management
• Symantec DLP 16.0
• Symantec Message labs
• Cisco Prime
• Arbor DDoS
• Lookout MDM
• Sophos
• Tripwire
• CrowdStrike EDR
• Splunk

Qualys Vulnerability Management