Responsibilities:- Monitors alerting tools, handles escalated incidents from helpdesk/desk side and end users Respond to suspicious alerts in a consistent and repeatable manner from multiple alerting sources Provide 24x7 coverage through a combination of onsite normal business hours monitoring and after hours on call - Responsible for triage of C2 alerts, Phishing attempts & AV Alerts and botnets which will make up the majority of the day-to-day threats - Provide escalations of unknown threats to Security Analysts - Responsible for effective Cyber Security Monitoring across Infosys group of companies (“Infosys” or “Organization” or “Company”) - Liaison with all internal (ISG) and external (non-ISG) stakeholders to meet Cyber Defense Center objectives including Subsidiary point of contacts - Carrying out Log Analysis and Analytics - Performing Malware analysis - Keep abreast on the Cyber Security Threats and should have the ability to contain the malware infection and remediateSkills and knowledge expectations:- Possess cross-domain knowledge in various areas of Cyber Security such as, but not limited to, - Information Security Forum (ISF) Standards of Good Practice (SoGP) - Alert triage procedures; intrusion detection; network, security information and event management (SIEM) and host based investigative training; and other security tool-specific training / certification. - Knowledge on Information Security Incident Response & Management based on ISO 27035 Script development using Perl and Python - NIST Cyber Security Framework (CSF) - Cyber Security Maturity Models like CREST - Adept in Information Security Incident Management with experience on various investigation practices in either of the following technologies - Security Information and Event Management, User and Entity Behavioral Analytics, Cyber Threat Intelligence, Data Leakage Prevention, Digital Forensics or Malware Analysis.
Job Title
Information Security Engineer