Cyber Security Content Developer - UEBA/SIEM (5-7 yrs) Mumbai (DevOps)
Yitro Business Consultants (India) Pvt Ltd
Mumbai
2d ago
source : hirist.com

Responsibilities :

  • Experience working or functional understanding with UEBA and SIEM
  • In depth knowledge of security data logs and use cases for Account Misuse, Data Exfiltration, Insider Threat
  • Functional understanding of how Hadoop works
  • Implement UEBA and SIEM use cases and detect advanced threats with different data sets like Proxy, VPN, Firewall, DLP.
  • What to expect :

  • Experience working or functional understanding with UEBA and SIEM
  • In depth knowledge of security data logs and use cases for Account Misuse, Data Exfiltration, Insider Threat
  • Functional understanding of how Hadoop works
  • Implement UEBA and SIEM use cases and detect advanced threats with different data sets like Proxy, VPN, Firewall, DLP.
  • Skill Sets :

  • At least 5+ years- experience working in the field of Content development and worked for delivering and / or building content on Splunk, AlienVault, Arcsight, QRadar, Nitro ESM
  • Solid networking fundamentals
  • Solid experience with Linux / Unix operating environments (configuration and troubleshooting)
  • Experience with information security technologies such as Firewall, VPN, Intrusion detection tools, Malware tools, Authentication tools, endpoint technologies, and cloud security tools
  • Experience with APT kill chain frameworks like MITRE, Lockheed Martin etc.
  • Experience working with regular expressions and understanding of YARA rules
  • Strong programming background with advanced skills in Java, MySQL, Hadoop is preferred.
  • IT security, risk, compliance, and privacy concepts and principles to support enterprise business goals and objectives;
  • Strong understanding on CASB and cloud security vendors like AWS, GCP, Azure etc.
  • Hands-on deployment of Security Information and Event Management (SIEM) and User and Entity Behavior Analytics (UEBA) solutions
  • Information security dashboards and report configuration based on IT standards and norms including, PCI-DSS, ISO27001, GLBA, SAS 70, ITIL, COBIT, FISMA, HIPAA, and NIST Special Publication 800 series;
  • Experience in Cyber Security technologies and concepts such as insider threat, malware, lateral movement, beaconing, ransomware, data theft, fraud
  • Troubleshooting on software component stack - java errors, SQL connections, Hadoop platform issue
  • Report this job
    checkmark

    Thank you for reporting this job!

    Your feedback will help us improve the quality of our services.

    Apply
    My Email
    By clicking on "Continue", I give neuvoo consent to process my data and to send me email alerts, as detailed in neuvoo's Privacy Policy . I may withdraw my consent or unsubscribe at any time.
    Continue
    Application form