Security Operation

Objective of job

To safeguard the organization's information assets by proactively managing security risks, effectively responding to incidents, and continuously improving the overall security posture.
-Protect the organization's information assets by maintaining confidentiality, integrity, and availability.
-Proactively identify, assess, and mitigate security risks and vulnerabilities.
-Lead and coordinate effective responses to security incidents, minimizing impact and ensuring timely recovery.
-Continuously improve the organization's security posture through proactive monitoring, analysis, and implementation of security best practices.
-Ensure compliance with relevant security standards, regulations, and policies.


Job designation

•Security Incident Management
-Monitor and respond to security incidents in alignment with incident response protocols.
-Lead incident response efforts to ensure timely containment, eradication, and recovery from security threats.
-Conduct thorough investigations of security incidents, including log analysis, host-based and network forensic investigations, to determine the root cause and impact.
-Develop incident analysis and findings reports for management, including gap identification and recommendations for improvement.
-Coordinate investigation, containment, and other response activities with business stakeholders and groups.

•Vulnerability Management
-Conduct vulnerability assessments and manage remediation efforts.
-Continually identify, assess, report on, manage, and remediate vulnerabilities across endpoints, workloads, and systems.

•Security Operations
-Fine-tune incident detection and alert-triggering rules to minimize false positives and improve detection accuracy.
-Analyze and improve security measures by assessing and updating policies, configurations, and procedures.
-Maintain situational awareness by tracking emerging threats, attack patterns, and tactics, techniques, and procedures
-Develop and maintain documentation, playbooks, and standard operating procedures.
-Perform onboarding of new team members and facilitate smooth integration.
-Help develop processes used for internal and external planning and collaboration.
-Provide technical and administrative support for day-to-day operations.

•Collaboration and Communication
-Collaborate with IT and RD application teams to ensure security is integrated into all stages of the software development lifecycle.
-Provide security training and awareness programs for employees.
-Communicate security status, risks, and incidents to executive leadership and other key stakeholders.