Principal Information Security Specialist

The Global Information Security teams are responsible for the confidentiality, integrity and availability of the firm's information and assets. Responsible for maintaining, communicating and raising awareness of the Policy. Facilitate the effective implementation and compliance of the firm's polices.

The Global Information Security Team is based in Europe, Asia, India and America.

Business Unit Overview:

The team's focus is to serve as the single point of contact for all Information security related queries, concerns, and technologies. Provide a high standard of user and business support in a responsive and timely manner across all businesses, take responsibility and ownership for maintaining the global strategy and controls for the delivery and operational deployment of global security initiatives in a manner consistent with the common business goals and objectives.

Technologies Covered:

Exposure to Cloud, Endpoint, Application and network security investigations - like - NDR, IPS, EDR, ATP, Malware defences and detection development on this technologies.

Threat hunting experience based on Static, Dynamic and Behaviour.

Knowledge of common adversary tactics and techniques, e.g., obfuscation, persistence, Defense evasion, etc.

Knowledge of Mitre ATT&CK framework preferred

Good Experience at least 5+ years in IR and Knowledge on handling advance incident response.

Exposure in query development for rule development on Elastic or any Data lake platform.

Good understanding of network traffic logs from different systems with analysis including TCP/IP, routing, switching, protocols, etc.

Strong understanding of Windows / Linux event log analysis

Good Exposure in sharing management level incident communications.

Excellent troubleshooting and analytical thinking skills

Excellent understanding on Malware Techniques and Malware analysis skills.

Strong documentation and communication skills

Passion for all things information technology and information security

Natural curiosity and ability to learn new skills quickly.

Skills & Experience

At least 4+ years of experience within a cybersecurity incident L3/ Advance investigation environment experience in a leadership role is preferred

Experience in a security operations centre, or similar environment, and identifying indications of compromise or attack and responding to incidents.

Position Specifications:

Role & Responsibilities:

Mind Set