Senior Network Security Engineer – Vectra and Gigamon

Senior Network Security Engineer – Vectra and Gigamon

Preference : Immediate Joiners

Experience : 6+ years

Skills : Vectra NDR and Gigamon SSL interceptor

Location : Hyderabad, Bangalore, Chennai

Required Qualification :

Bachelor’s degree in Cybersecurity, Information Technology, Computer Science, or a related field.

6+ years of experience

in managing and administering Vectra NDR and Gigamon SSL interceptor tools

Architecture Design ,Tool Implementation & Configuration, Administration and Troubleshooting, Monitoring and reporting, Technology Refresh and Upgrades

Demonstratable expertise in managing and administering Vectra AI’s Cognito platform (NDR), including the management of sensors, correlators and the associated analytics engine

Extensive experience with Gigamon’s Traffic Visibility Fabric and specifically, the SSL / TLS decryption capabilities of the Gigamon SSL interceptor

Strong understanding of TCP / IP networking protocols, network architecture, and security principles

Proficiently with packet analysis tools such as Wireshark and TCPDump

Experience with a variety of security technologies, including IDS / IPS, firewalls, proxies, and SIEM platforms

Excellent problem-solving skills and the ability to work independently or as part of team.

Strong communication and interpersonal skills, with the ability to explain complex technical concepts to non-technical audiences.

ROLES & RESPOSIBILITIES :

Vectra NDR Administration

Serve as the subject matter expert for the Vectra NDR platform

Administer, configure and maintain Vectra appliance and sensors

Monitor, triage and investigate security alerts generated by Vectra, leveraging network metadata and AI-driven insights to identify sophisticated threats, malware and attacker behaviors.

Perform threat hunting activities using Vectra’s capabilities to proactively search for indicators for compromise (IOCs) and advanced persistent threats (APTs)

Integrate Vectra with other security tools, i.e. SIEM, SOAR, EDR to enable a comprehensive security ecosystem.

Gigamon SSL Interceptor Administration

Administer and manage the Gigamon traffic visibility fabric, including GigaVUE nodes and modules

Configure and maintain SSL / TLS decryption policies and forwarding rules using the Gigamon SSL interceptor to provide visibility into encrypted traffic for security tools

Ensure proper traffic distribution to various security and monitoring tools, i.e. IDS / IPS, and analytics platforms while maintaining network performance and availability.

Troubleshoot traffic flow and connectivity issues within the Gigamon environment.

BAU Operations

Proactively monitor network traffic for anomalies, security breaches and policy violations

Contribution to develop and implement network security policies and procedures

Participate in incident response activities, providing expert analysis of network traffic and threat actor movements

Perform regular health checks, maintain and upgrade for all network security appliances

Collaborate with other security teams, i.e. SOC, Incident response, engineering, etc… to improve overall security posture

Create and maintain detailed documentation for all the network security configurations, procedures and runbooks.

Generate regular reports on security incidents, threat trends and performance of security tools

Provide training and mentorship to junior staff on the use of security tools and best practices.