Job Description
Job Objective :-
To assist in ensuring effective & timely management of
security incidents so as to minimize incident impact & ensure the swift
restoration of normal operations in an organization. To perform incident
analysis including reported logs and provide recommendation based on RCA.
Essential Criteria: -
Engineering Graduate in any stream.
Or
Post-graduation in (CS/ IT) or equivalent.
Certifications:
(Any one mentioned below from recognized an institute)
Certified Incident Handler (GCIH) / Certified Ethical Hacker
(CEH) /Certified Computer Security Incident Handler (CSIH) / CompTIA Security+
/ Offensive Security Certified Professional (OSCP) / Certified SoC Analyst /
“SANS SEC504.
Roles & Responsibility: -
- Support implementation of security incident management
processes for Security Incident Management, prepare the plan for Risk
Assessment & Management.
- Perform detailed investigations and forensic analysis to
understand the nature of the security incident, identify how the breach
occurred, who was responsible, and what can be done to prevent similar
incidents in the future.
- Evaluating the incident/malware analysis reports and
suggesting appropriate resolution measures.
- Perform & Assist in Incident Response Management:
Respond to and manage cybersecurity incidents in a timely and effective manner.
This includes steps like identifying, classifying, and prioritizing incidents;
taking appropriate actions to mitigate damage; and coordinating with other
teams for incident resolution.
- Reporting and Documentation: Create detailed incident
reports documenting the nature of the incident, actions taken, lessons learned,
and recommendations for future prevention, so as to ensure the organizational
policies & compliance.
- Should be conversant with relevant Tools and Technology
required for the role Management.
- Preparation of daily/weekly/monthly reports and inputs to
higher management for parliament questions, annual reports etc.