Cyber Security Engineer (EDR)

Skill : Endpoint Detection and Response (EDR)

Exp : 3- 8 Yrs

NP : 30-60 days

Location : Pune & Hyderabad

Responsibilities

• Good working knowledge of EDR solutions such as MDATP, FireEye, CrowdStrike Falcon, Carbon Black.
• Must be well-versed with Operating System concepts i.e. Windows / Linux / MacOS
• Ability to distinguish between False Positives and False Negatives detections with respect to logs available.
• Good Exposure to OSINT tools, sandboxing, encoding-decoding techniques for independent investigation.
• Must be able to Investigate and Triage EDR related alerts with an ability to share detailed investigation reports to clients within SLA.
• Knowledge of Cyber kill chain and MITRE ATT&CK techniques and tactics used by adversary to evade detection.
• Awareness of various stages of Incident Response which involves in-depth analysis and RCA submission on security incidents.
• Good understanding of Malware Analysis i.e. static and dynamic and its variants.
• Exposure to adversary simulation and red teaming tools such as Caldera, PowerShell Empire, Cactus Torch
• Understanding of Database language i.e. KQL is a Plus.
• Understanding of Network Security concepts and popular encryption standards.
• Excellent communication skills for cross-group and interpersonal skills with ability to articulate business need for detection improvements.
• Exposure to reverse engineering of malware samples is a plus.
• Certification in OSCP, OSCE, GREM, GCIH, GCFA will be highly preferred.
• Willing to work in rotational shift timings.