Security Consultant – Threat Hunting_SIEM @ Hyderabad Location Job For 5-14 Year Exp In Tech Mahindra Limited Hyderabad / Secunderabad – 1481064

Security Consultant – Threat Hunting

Job Location : Hyderabad
Willingness to work in 24×7 shift environment (as required)

Relevant experience in Network & Security – 6+ year of hands-on experience in providing operational SOC support of performing L3 level analysis.
Experience on Exabeam SIEM Tool

4+ years of experience handling Incident Response life-cycle, cyber threat review and analysis
4+ years of experience with SIEM tool design, setup, and Implementation across different landscape (Public and Private Cloud) and OS version (Windows and Linux)

Excellent customer service and communication skills
Roles & Responsibilities:

Well versed with SIEM, Threat Hunting, Security Analytics, Threat analytics and other Next Gen SOC concepts
Identify potential malicious activity from various available sources, tools & technologies and analysis of cyber threats
Responsible for driving the Security Incident Response E2E life cycle including coordination, remediation plan/ recommendation submission to customers
Create Threat Models based on industry standard framework (eg. Mitre ATT&CK and cyber kill chain) for customers Linking of threat models with SIEM use cases and hunting exercises Basic Malware Analysis
Work on SOAR platforms for incident orchestration and response
Identify known/unknown threats through advanced threat hunting services to complement standard Security Operations Center services
Operate and enhance proprietary threat hunting tools and platforms, characterize suspicious binaries and identify traits, C2, and develop network and host-based IOCs
Guide Cyber SOC team to have new unique use cases on SIEM
Perform initial investigations (lightweight forensics) on potential incidents identified
Leverage threat intelligence, document threats as needed and share intelligence from analysis to further enhance service quality and delivery
Work on improvements for provided security services, including the continuous enhancement of existing methodology
Maintain strong, effective working relationships with vendor engineering resources
Fulfill on-call duties when required
Willingness to work in 24×7 shift environment (as required)
Coordinate with OEM, customer and other stakeholders for escalated issues and scheduled maintenance