Charan Reddy’s Post

Hello Connections, There is an Urgent Requirement on Information Security Analyst IV with one of our client. Role: Information Security Analyst IV Location: Salem, Oregon-97301---Remote (This can be a remote position; however, they would need to come to the office to pick up their equipment.) Duration: 6+Months   Job Description  ·        Monitor security events and alerts from various sources, including SIEM (Security Information and Event Management) systems, IDS/IPS (Intrusion Detection/Prevention Systems), firewalls, and other security tools.  Minimum Qualifications for Our Position ·        Seven (7) years of experience in a security operations center (SOC) or related security role; OR ·        An Associate's degree or higher in Computer Science, Information Technology, or related field, OR ·        completion of a two (2) year accredited vocational training program in information technology or related ·        field; AND 5 years of information systems experience in a security operations center (SOC) or related security role; OR ·        A Bachelor's degree in Information Technology, Computer Science, or related field AND three (3) years of experience in a security operations center (SOC) or related security role; OR ·        Master's degree in Information Technology, Computer Science, or related field AND one (1) year experience in a security operations center (SOC) or related security role.   Ideal Candidate Desired Attributes & Desired Experience ·        Experience as a SOC Analyst or in a similar role ·        Strong knowledge of security principles, concepts, and technologies. ·        Familiarity with SIEM tools and security monitoring systems. ·        Experience with incident response methodologies and tools. ·        Understanding of networking protocols and security infrastructure components. ·        Excellent analytical and problem-solving skills. ·        Excellent communication skills, with the ability to articulate complex security issues to technical and non-technical stakeholders. ·        Relevant certifications such as CompTIA Security+, Certified Information Systems Security Professional (CISSP), or GIAC Certified Incident Handler (GCIH) are a plus. ·        Excellent attention to detail and accuracy. ·        Versatile problem solver, self-starter, and can quickly learn the essentials of what needs to be done or accomplished ·        Strong relationship management including facilitation and coordination with project teams and stakeholders. ·        Ability to be adaptable, flexible, and work in a fast-paced environment. ·        High emotional quotient and self-awareness and the ability to handle interpersonal relationships judiciously and empathetically. ·        Ability to apply equity, intersectional, and anti-racist lens to projects. ·        Skill using logic and reasoning to identify the strengths and weaknesses of alternative Interested please share resumes to charan@anveta.com

Hello Connections, There is an Urgent Requirement on IT Security Operations with one of our client. Role: IT Security Operations  Location: 3 Days per week onsite 2 days remote Experience: 4-6 years Note: Locals preferred only on W2. One of 3 shifts a day in a 24/7 operation (*consultant needs to be flexible enough to fill any of the 3 shifts as needed): Shift 1 = 12am – 8:30am Shift 2 = 8am – 4:30pm Shift 3 = 3:30pm – 12am   Please see attached CMP form send me scan copy with signature along with DL copy   Summary Of the Function/Role: The IT Cyber Security Operations Monitoring Team is seeking consultants to perform Tier 2 SOC follow-up and remediation activity on escalated incidents. The Tier 2 level Analyst (Senior Analyst) should have the ability to respond to a wide range of escalated Incidents and follow through with incident lifecycle through completion. Some of the areas we are looking for candidates to have experience in include but are not limited to: Critical Key requirements: • Critical Thinker & Analytical Aptitude • SIEM Experience (Splunk) • Tier II SOC Incident Handling & Investigation • 24/7 Security Operation Center Experience • Threat Detection & Response Experience • Threat Detection Technologies Experience RISKS (required by MTA Risk Management): • All work when On MTA premises will be desk work only performed within the Cyber Security Operation Center (CSOC) Environment. Qualifications Experience & Education: • Knowledge of Enterprise Networks & Security infrastructure, Communication and internet security systems, Firewalls, Intrusion Protection Systems, Remote Access VPN, Proxy, Wireless Security, NAC, Enterprise ID Management systems, Database, computer systems, security event analysis and forensic investigations. • Organizational, decision making, and communications skills. • Knowledge of network security operations with a solid understanding of the technology and attention to detail. • Creative problem-solving abilities, coupled with a desire to take on responsibility. • Strong team player with the ability to engage and promote a cohesive unit. • Ability to handle multiple tasks in a fast-paced environment and prioritize highly varied work in order to maintain required productivity levels. • Ability to communicate technical' info and ideas so others will understand. • Ability to make appropriate decisions considering the relative costs and benefits of potential actions. • Ability to apply collaborative skills and traits that create solutions and results to unexpected situations. • Bachelor’s degree in Computer Science, Cyber Security, Information Technology or related discipline OR a satisfactory equivalent with 4-6 years of Information Technology experience.   Interested please share resumes to charan@anveta.com

Greetings from Soft_AI, We have the following urgent requirement,please share your resume on ram@softaiusa.com urgently if you are fine with JD.. JD : *PLEASE NOTE THIS POSITION WILL ALLOW CONSULTANT TO WORK REMOTELY. HOWEVER, DUTIES WILL REQUIRE CONSULTANT TO WORK ONSITE 3 DAYS PER WEEK. THEREFORE, WILL BE CRITICAL FOR THE CONSULTANT TO BE LOCAL TO NYC AND ABLE TO TRAVEL TO OUR OFFICE WITHOUT ISSUE, AS NEEDED (AT THEIR OWN EXPENSE). One of 3 shifts a day in a 24/7 operation (*consultant needs to be flexible enough to fill any of the 3 shifts as needed): Shift 1 = 12am – 8:30am Shift 2 = 8am – 4:30pm Shift 3 = 3:30pm – 12am SUMMARY OF THE FUNCTION/ROLE: The IT Cyber Security Operations Monitoring Team is seeking consultants to perform Tier 2 SOC follow-up and remediation activity on escalated incidents. The Tier 2 level Analyst (Senior Analyst) should have the ability to respond to a wide range of escalated Incidents and follow through with incident lifecycle through completion. Some of the areas we are looking for candidates to have experience in include but are not limited to: Critical Key requirements: * Critical Thinker & Analytical Aptitude * SIEM Experience (Splunk) * Tier II SOC Incident Handling & Investigation * 24/7 Security Operation Center Experience * Threat Detection & Response Experience * Threat Detection Technologies Experience QUALIFICATIONS EXPERIENCE & EDUCATION: * Knowledge of Enterprise Networks & Security infrastructure, Communication and internet security systems, Firewalls, Intrusion Protection Systems, Remote Access VPN, Proxy, Wireless Security, NAC, Enterprise ID Management systems, Database, computer systems, security event analysis and forensic investigations. * Organizational, decision making, and communications skills. * Knowledge of network security operations with a solid understanding of the technology and attention to detail. * Creative problem-solving abilities, coupled with a desire to take on responsibility. * Strong team player with the ability to engage and promote a cohesive unit. * Ability to handle multiple tasks in a fast-paced environment and prioritize highly varied work in order to maintain required productivity levels. * Ability to communicate technical' info and ideas so others will understand. * Ability to make appropriate decisions considering the relative costs and benefits of potential actions. * Ability to apply collaborative skills and traits that create solutions and results to unexpected situations. * Bachelor’s degree in Computer Science, Cyber Security, Information Technology or related discipline OR a satisfactory equivalent with 4-6 years of Information Technology experience.Additional Skills and Information:Security Event Monitoring, Network Event monitoring, Email Header Analysis, Packet Capture inspection, Malware Triage & Analysis, SIEM (Splunk) & TIP Experience

ShieldX Security UK base information security company looking to hire 𝐒𝐞𝐧𝐢𝐨𝐫 𝐒𝐞𝐜𝐮𝐫𝐢𝐭𝐲 𝐎𝐩𝐞𝐫𝐚𝐭𝐢𝐨𝐧 𝐀𝐧𝐚𝐥𝐲𝐬𝐭 𝐉𝐨𝐛 𝐃𝐞𝐬𝐜𝐫𝐢𝐩𝐭𝐢𝐨𝐧: The SOC Analyst Level 3 / Sr, SOC Analyst is a senior position within the Security Operations Center (SOC) responsible for advanced threat detection, incident response, and the development and optimization of SIEM (Security Information and Event Management) systems. 𝐊𝐞𝐲 𝐑𝐞𝐬𝐩𝐨𝐧𝐬𝐢𝐛𝐢𝐥𝐢𝐭𝐢𝐞𝐬: 𝐀𝐝𝐯𝐚𝐧𝐜𝐞𝐝 𝐓𝐡𝐫𝐞𝐚𝐭 𝐃𝐞𝐭𝐞𝐜𝐭𝐢𝐨𝐧 𝐚𝐧𝐝 𝐀𝐧𝐚𝐥𝐲𝐬𝐢𝐬:  Monitor and analyze security events and alerts from SIEM and other security tools.Conduct in-depth analysis of security incidents to determine root cause, scope, and impact. Perform threat hunting to identify and mitigate potential security risks. SIEM Development and Optimization: Develop, configure, and maintain SIEM systems to ensure effective and efficient threat detection. 𝐈𝐧𝐜𝐢𝐝𝐞𝐧𝐭 𝐑𝐞𝐬𝐩𝐨𝐧𝐬𝐞: Lead and coordinate responses to complex security incidents, including containment, eradication, and recovery.Develop and execute incident response plans and playbooks.Conduct post-incident analysis to identify gaps and recommend improvements.  𝐏𝐫𝐨𝐚𝐜𝐭𝐢𝐯𝐞 𝐒𝐞𝐜𝐮𝐫𝐢𝐭𝐲 𝐌𝐞𝐚𝐬𝐮𝐫𝐞𝐬: Perform vulnerability assessments and penetration testing to identify weaknesses.Implement and manage advanced security controls and technologies.Conduct regular security assessments to ensure compliance with policies and standards. 𝐌𝐞𝐧𝐭𝐨𝐫𝐬𝐡𝐢𝐩 𝐚𝐧𝐝 𝐓𝐫𝐚𝐢𝐧𝐢𝐧𝐠: Mentor and train junior SOC analysts on cybersecurity and SIEM best practices.Develop and deliver training sessions on advanced cybersecurity topics.  𝐂𝐨𝐥𝐥𝐚𝐛𝐨𝐫𝐚𝐭𝐢𝐨𝐧 𝐚𝐧𝐝 𝐂𝐨𝐦𝐦𝐮𝐧𝐢𝐜𝐚𝐭𝐢𝐨𝐧:  Work closely with IT and security teams to ensure coordinated responses to incidents.Communicate complex security issues and recommendations to non-technical stakeholders.Develop and maintain documentation, including incident reports, SOPs, and threat intelligence reports. Continuous Improvement: Stay current with cybersecurity trends, threats, and technologies.Participate in industry forums, conferences, and training sessions.Recommend and implement enhancements to SOC capabilities and processes. 𝐐𝐮𝐚𝐥𝐢𝐟𝐢𝐜𝐚𝐭𝐢𝐨𝐧𝐬: Bachelor’s degree in Computer Science, Information Security, or a related field (or equivalent experience).At least 5-7 years of experience in a SOC or Cybersecurity role, with at least 3-4 years in a senior position. Relevant certifications such as CISSP, CISM, CEH, GIAC, or equivalent.Proficiency in SIEM tools (e.g., Splunk, ArcSight, QRadar) and security technologies.Strong knowledge of Cybersecurity frameworks and standards (e.g., NIST, ISO 27001).Experience with scripting and automation (e.g., Python, PowerShell) is a plus. Job Timing & Location Job Time: Night Shift Location : Lahore Interested share resume Saddam.hussain@tekboox.com

we're hiring Job Title: SOC Analyst L2 Key Responsibilities Security Monitoring & Incident Response Monitor, manage, and respond to security events and incidents. Ensure timely identification, assessment, and quantification of security incidents, followed by accurate reporting, communication, and mitigation. Handle incident detection and response, leveraging knowledge of incident response methodologies to minimize impact and conduct post-incident analysis. Work closely with cross-functional teams during security breaches to ensure containment and remediation. Threat Analysis & Vulnerability Management Analyze network traffic, logs, and other data sources to detect potential threats and respond accordingly. Utilize advanced tools and techniques to proactively identify emerging risks and recommend appropriate remediation actions. Participate in vulnerability assessments and penetration testing to enhance exploitation detection. SIEM Integration & Operations Ensure the integration of standard and non-standard logs into SIEM systems. Contribute to the continuous improvement of security operations by refining standard operating procedures (SOPs) for incident response and other key processes. Threat Intelligence & Proactive Defense Stay updated on emerging threats, vulnerabilities, and cybersecurity trends through ongoing research and engagement with cybersecurity communities. Incorporate relevant threat intelligence into daily analysis to enhance detection capabilities. Documentation & Reporting Create detailed incident reports, summaries, and operational documentation. Maintain accurate records of incidents, investigations, and mitigation efforts for continuous improvement and auditing. Qualifications Education: Bachelor’s degree in Computer Science, Information Technology, Cybersecurity, or equivalent practical experience. Experience: Minimum 2 years in a SOC, CERT, or a similar cybersecurity role. Technical Proficiency: Hands-on experience with EDR, SIEM, and SOAR tools. Ability to analyze network traffic, logs, and security artifacts. Scripting skills and Windows forensics are a plus. Certifications: Preferred certifications include CHFI, ECSA, ECIH, CySA+, or CDSA. Skills: Strong understanding of common IT protocols (network, system, email). Familiarity with incident response processes including containment, eradication, and recovery. Soft Skills: Excellent problem-solving skills, with the ability to handle pressure and respond effectively in crisis situations.

HELLO CONNECTIONS WE ARE HIRING ! SOC L3/Technical Lead • Skilled in using incident handling methodologies. • Skilled in collecting data from a variety of cyber defence resources. • Skilled in recognizing and categorizing types of vulnerabilities and associated attacks. • Experience detecting host and network-based intrusions using intrusion detection technologies. • Experience to interpret the information collected by network tools (e.g., nslookup, Ping, and Traceroute). • In-depth knowledge of security concepts such as cyber-attacks and techniques, threat vectors, risk management, incident management, MITRE etc. • Experience in threat management and threat intelligence • Knowledge of applications, databases, middleware, Authentication, authorization, and access control methods. • Key concepts in security management (e.g., Release Management, Patch Management), • Operating system command-line tools like PowerShell, Packet-level analysis using appropriate tools (e.g., Wireshark, tcpdump), Network tools (e.g., ping, traceroute, nslookup), Network systems management principles, models, methods (e.g., end-to-end systems performance monitoring), and tools, Windows/Unix ports and services. • Working knowledge and experience with MS office with proficiency in Excel Roles and Responsibilities: • Lead and manage Security Operations Centre in an MSSP environment • Ensure incident identification, assessment, quantification, reporting, communication, mitigation, and monitoring • Ensure compliance to SLA, process adherence and process improvisation to achieve operational objectives • Revise and develop processes to strengthen the current Security Operations Framework, review policies and highlight the challenges Creation of weekly, monthly, quarterly reports, dashboards, metrics for SOC operations and presentation to client and Sr. Mgmt. • Interface both internal & external audits of the Security Operations Center (SOC) Conduct regular review with customer stakeholders, build and maintain positive working relationships with them • Provide timely detection, identification, and alerting of possible attacks/intrusions, anomalous activities, and misuse activities and distinguish these incidents and events from benign activities. Isolate and remove malware. .Receive and analyse network alerts from various sources and determine possible causes of such alerts. • Analyse and report system security posture trends. • Assess adequate access controls based on principles of least privilege and need-to-know. Work with stakeholders to resolve computer security incidents and vulnerability compliance. • Creating SIEM correlation rules, custom reports, integrating threat intelligence feeds • Administer, manage, configure, maintain, and support Security devices like Firewall, IDS/IPS, Proxies, Mail Gateways etc. • Onboarding new customers in Build and Run and Build and Handover model • Thorough understanding of Windows and Linux Internals Preeti@innotechconsultants.in

Hi Folks, Hope you are doing well. Please share suitable candidates for below position. Role: Senior Cyber Security Engineer Location: New Jersey (Day 1 Onsite) Duration: Long Term Experience Needed: 9+ Years Visa: Any   Job Description ·    Provide first level response for security events including but not limited to intrusion detection, malware infections, denial of service attacks, privileged account misuse and network breaches. ·    Coordinate with enterprise-wide cyber defense staff to validate network alerts ·    Ensure cybersecurity-enabled products or other compensating security control technologies reduce identified risk to an acceptable level ·    Work with TVM vendor, work with various to to drive the remediation and track the process, Open CR and schedule scans & follow up scans, analyze potential exploitation scenarios, assess applicable security controls, and evaluate potential impact. ·    Performing security reviews and identify security gaps in security architecture resulting in recommendations for inclusion in the risk mitigation strategy ·    Participating in planning and recommendation of modifications or adjustments based on exercise results or system environment. ·    Implementing security measures assistance in disaster recovery and planning. ·    Utilizing OSINT to effectively detect and prevent indicators of compromise in affected systems. ·    Triaging according to organizational procedures to ensure that a genuine security incident is occurring. ·    Providing daily summary reports of network events and activity relevant to cyber defense practices ·    Providing timely detection, identification, and alerting of possible attacks/intrusions, anomalous activities, and misuse activities and distinguish these incidents and events from benign activities. ·    Conducting research, analysis, and correlation across a wide variety of all source data sets (indications and warnings). ·    Collaborating with stakeholders to resolve computer security incidents and vulnerability compliance. ·    Documenting and escalate incidents (including event’s history, status, and potential impact for further action) that may cause ongoing and immediate impact to the environment. ·    Analyzing identified malicious activity to determine weaknesses exploited, exploitation methods, effects on system and information. ·    Monitoring and reviewing the most recent SIEM alerts to determine relevance and urgency. ·    Providing metrics and reports around security monitoring by designing dashboards for asset owners and management consumption ·    Contributing to the development and implementation of security architecture, standards, procedures and guidelines for multiple platforms ·    Documenting current case notes sufficient for effective shift handover, as well as reviewing current status via phone call or in person. Share profiles to ramesh@metafindsolutions.com

#hiring *Incident Manager with Security Clearance*, Arlington, *United States*, fulltime #opentowork #jobs #jobseekers #careers #Arlingtonjobs #Virginiajobs #ITCommunications *To Apply -->*: https://lnkd.in/dK-77Mh4 Responsibilities:- Correlating incident data to identify specific trends in reported incidents- Recommending defense in depth principles and practices (i.e. Defense in Multiple Places, layered defenses, security robustness, etc.)- Performing Computer Network Defense incident triage to include determining scope, urgency, and potential impact- Researching and compiling known resolution steps or workarounds to enable mitigation of potential Computer Network Defense incidents within the enterprise- Applying cybersecurity concepts to the detection and defense of intrusions into small, and large-scale IT networks, and conduct cursory analysis of log data- Monitoring external data sources to maintain currency of Computer Network Defense threat condition and determine which security issues may have an impact on the enterprise- Identifying the cause of an incident and recognizing the key elements to ask external entities when learning the background and potential infection vector of an incident,- Receiving and analyzing network alerts from various sources within the enterprise and determine possible causes of such alerts- Tracking and documenting Computer Network Defense (CND) incidents from initial detection through final resolution, and work with other components within the organization to obtain and coordinate information pertaining to ongoing incidents- Providing support during assigned shifts Required Skills:- U.S. Citizenship- Must have an active TS/SCI clearance- Must be able to obtain DHS Suitability- 5+ years of directly relevant experience in cyber incident management or cybersecurity operations- Knowledge of incident response and handling methodologies- Having close familiarity with NIST 800-62 (latest revision), and FISMA standards as they pertain to reporting incidents.- Knowledge of the NCCIC National Cyber Incident Scoring System to be able to prioritize triaging of incident- Knowledge of general attack stages (e.g., foot printing and scanning, enumeration, gaining access, escalation of privileges, maintaining access, network exploitation, covering tracks, etc.)- Skill in recognizing and categorizing types of vulnerabilities and associated attacks- Knowledge of basic system administration and operating system hardening techniques, Computer Network Defense policies, procedures, and regulations- Knowledge of different operational threat environments (e.g., first generation script kiddies , second generation non nation-state sponsored , and third generation nation-state sponsored )- Knowledge of system and application security threats and vulnerabilities (e.g., buffer overflow, mobile code, cross-site scripting, PL/SQL and injections, race conditions, co

#hiring *Incident Manager L3 with Security Clearance*, Arlington, *United States*, fulltime #opentowork #jobs #jobseekers #careers #Arlingtonjobs #Virginiajobs #ITCommunications *To Apply -->*: https://lnkd.in/dQSxdPaF Responsibilities:• Correlating incident data to identify specific trends in reported incidents• Recommending defense in depth principles and practices (i.e. Defense in Multiple Places, layered defenses, security robustness, etc.)• Performing Computer Network Defense incident triage to include determining scope, urgency, and potential impact• Researching and compiling known resolution steps or workarounds to enable mitigation of potential Computer Network Defense incidents within the enterprise• Applying cybersecurity concepts to the detection and defense of intrusions into small, and large-scale IT networks, and conduct cursory analysis of log data• Monitoring external data sources to maintain currency of Computer Network Defense threat condition and determine which security issues may have an impact on the enterprise• Identifying the cause of an incident and recognizing the key elements to ask external entities when learning the background and potential infection vector of an incident,• Receiving and analyzing network alerts from various sources within the enterprise and determine possible causes of such alerts• Tracking and documenting Computer Network Defense (CND) incidents from initial detection through final resolution, and work with other components within the organization to obtain and coordinate information pertaining to ongoing incidents• Providing support during assigned shifts Required Skills:• U.S. Citizenship• Must have an active TS/SCI clearance• Must be able to obtain DHS Suitability• 5+ years of directly relevant experience in cyber incident management or cybersecurity operations• Knowledge of incident response and handling methodologies• Having close familiarity with NIST 800-62 (latest revision), and FISMA standards as they pertain to reporting incidents.• Knowledge of the NCCIC National Cyber Incident Scoring System to be able to prioritize triaging of incident• Knowledge of general attack stages (e.g., foot printing and scanning, enumeration, gaining access, escalation of privileges, maintaining access, network exploitation, covering tracks, etc.)• Skill in recognizing and categorizing types of vulnerabilities and associated attackso Knowledge of basic system administration and operating system hardening techniques, Computer Network Defense policies, procedures, and regulationso Knowledge of different operational threat environments (e.g., first generation script kiddies , second generation non nation-state sponsored , and third generation nation-state sponsored )o Knowledge of system and application security threats and vulnerabilities (e.g., buffer overflow, mobile code, cross-site scripting, PL/SQL and injections, race conditio