The Ceres Group
- Understanding with Cloud Security Concepts (SaaS, PaaS, IaaS), Mobile Architecture, Network and Application Security and /or Data protection.
- Maintain and analyze security controls in network and host-based security platforms:
- Good understanding of system and web application vulnerability scanning tools
- Automated security patching systems
- Network and host-based Intrusion Detection/Prevention Systems
- Good understanding of Security Information & Event Management (SIEM) platforms
- Firewall and network access controls lists
- Web and E-mail proxy and filtering systems - Test security tool requirements, controls, trials, and evaluations, as well as security operations procedures and processes
- Proficient knowledge and experience with the following: vulnerability scanning, firewalls, antivirus & malware analysis, proxy, IDS/IPS, and log correlation tools.
- Support security infrastructure that detects and responds to: threats, including IPS, WAF, SIEM and NAC systems
- Focusing on the creation of threat detection logic, dynamic operational dashboards, and data source onboarding for Splunk Enterprise tool
- Manage and develop dashboard reports to meet the requirements of key stakeholders, and processes for Splunk Enterprise
- Assisting incident response and analyzing the reports to respond to a security incident.
- Ethical Hacking or Security Analyst experience helpful
- SOC tools and Cloud experience preferred.
- Strong understanding of enterprise, network, system and application level security issues.
#LI-MG1
#LI-MG1