Upstox is seeking a highly skilled Senior Security Engineer to join our Cyber Defence team. The ideal candidate will have extensive experience in cybersecurity, particularly in SOC (Security Operations Center) operations across all levels (L1, L2, and L3). The candidate should possess advanced expertise in SIEM (Security Information and Event Management), SOAR (Security Orchestration, Automation, and Response), UEBA (User and Entity Behavior Analytics), EDR/XDR (Endpoint Detection and Response/Extended Detection and Response), DLP (Data Loss Prevention), firewalls, incident response, and SOC process optimization. Additionally, the candidate should be proficient in conducting gap assessments, mitigating internal security gaps, and reviewing and configuring security systems within the Cyber Defence infrastructure.
Responsibilities:
1) Lead SOC Operations Across Levels: Lead and supervise SOC analysts across all levels, providing guidance and support in incident detection, analysis, and response. 2) Security Operations and Incident Response: Oversee all aspects of SOC operations, including monitoring security alerts, investigating incidents, and coordinating response efforts.
3) Develop and implement incident response procedures to ensure timely and effective resolution of security incidents.
4) Conduct thorough post-incident analysis and documentation to identify root causes and implement preventive measures.
Technical Expertise:
1) Utilize advanced cybersecurity tools and technologies, including SIEM, SOAR, UEBA, EDR/XDR, DLP, and firewalls, to detect and mitigate security threats.
2) Stay abreast of emerging cyber threats and vulnerabilities, implementing proactive measures to enhance the organization’s security posture.
3) SOC Process Optimization: Fine-tune SOC processes and workflows to enhance efficiency and effectiveness in threat detection and response.
4) Conduct comprehensive gap assessments to identify areas for improvement in SOC operations and implement appropriate mitigations.
5) Security System Configuration and Review: Review and configure security systems within the Cyber Defence infrastructure, ensuring compliance with security best practices and policies.
6) Collaborate with internal teams to implement robust security controls and mechanisms to safeguard critical assets and data.
Qualifications:
1) Minimum of 3 years of experience in cybersecurity, with a focus on SOC operations and incident response.
2) Advanced proficiency in SIEM, SOAR, UEBA, EDR/XDR, DLP, and firewall technologies.
3) Proven track record of effectively handling security incidents and conducting incident response activities.
4) Strong understanding of cyber defence principles and offensive security techniques.
5) Certifications: Relevant industry certifications such as CISSP, CISM, GIAC, or equivalent are preferred.
6) Excellent analytical and problem-solving skills, with the ability to analyze complex security incidents and recommend appropriate remediation actions.
7) Exceptional communication and leadership skills, with the ability to lead and mentor SOC teams effectively.
8) Collaborative mindset with the capability to work closely with cross-functional teams to achieve cybersecurity objectives.