Send me more jobs like this

Keywords / Skills : Security Admin, Security Administrator, IP Lookups, Dshield, SIEM alerts , Security and Compliance implementation, endpoint security, cyber intrusions, Security Administration

5 - 10 years
Posted: 2019-08-30

IT/Computers - Software
Security Analyst
Other Software/Hardware/EDP - Security admin
Posted On
30th Aug 2019
Job Description
Security Admin 

5-10 yrs; EST business hours

Job Description

5 to 7 years Security and Compliance implementation

Roles & Responsibilities:

• Monitor, Detect and Analyze incidents / offenses (8*5 support) in devices & end-user devices through endpoint security/SIEM and providing incident response based on environmental context.

• Providing incident response which includes identifying the threat, analyzing the threat and RCA based on agreed incident response plans including triaging of events to various teams for remediation

• Recognize successful cyber intrusions and compromises through log review and analysis of relevant event detail information (Tools used -: IP Lookups based on Dshield and, file checks based on and, domain checks based on, app checks based on Bit9 file advisor) .

• Coordinate with security team for relevant security incident investigations.

• Investigate, document, and report on information security issues and emerging

• trends. Reporting – Standard & customized reports based on tools capabilities

• Analyze user reported phishing emails and take necessary remedial action based on the analysis

• Monitoring antivirus event logs and remediate by coordinating with respective teams. Also update security Incident register.

• Review and recommend endpoint security (Antivirus) policy changes based on the patters and anomalies detected.

• Regular review of endpoint security dump with inventory records and reconciling them for identification of endpoints which are malfunctioning, disabled or not reporting due to connectivity issues. Security analyst will work with respective users to remediate this issue. Also, will escalate if needed to corporate security for issues that need executive attention such as acceptable usage policy violations

• Monitoring SIEM alerts and validating the alerts for performing first level incident response

• Weekly/ Monthly Threat reports to be shared to Security Team.

About Company

At GAVS, we provide a wide spectrum of IT solutions and services to customers around the globe, optimizing bottom lines and delivering top line growth. Our flexible, customer-centric engagement model addresses real world problems, not problems that we engineer to fit pre-configured solutions.

As strategic partner to customers like Bank Muscat,Network International, ENBD, National Bank of Oman,EDS, Hunter Douglas and StorageTek, Sportingbet, BLHC,we help conceptualize and realize process and technology-driven business transformation initiatives. We have offices in USA, UK, Singapore and the Oman and our global footprint allows us to deliver solutions that we configure with 24x7 reliability. We have established partnerships that complement and expand our own capabilities. This includes alliances with leading product vendors like Microsoft, Siebel, IBM and Informatica.

Our cross-enterprise, cross-industry services combine proven methodology with a pragmatic, benefit-focused approach. Everything we deliver is customized for unique business demands and organizational culture. What does this mean for you? More responsive customer service, a more flexible and connected infrastructure and greater enterprise control-all at substantially lower costs.
About Recruiter
Manager - TA
GAVS Technologies Private Limited
Skills I hire for Kony, adm,
Followers(114) | Active Jobs(4)
Similar Jobs
View All Similar Jobs
Walkin for you