Senior Information Security Specialist

Roles & Responsibilities: · Monitoring the system and ensure the system available 24/7. · Maintain the best practices and security standards. · Design and implement security solutions that protect the organization's On-prem / cloud infrastructure, applications, and data from security threats. · Responsible for conducting regular security assessments of the organization's On-prem / cloud environment to identify potential security vulnerabilities and recommend appropriate remediation measures. · Configure and maintain various security tools such as firewalls, intrusion detection and prevention systems, and security information and event management (SIEM) systems to ensure optimal protection against security threats. · Regularly monitor the syslog’s and take corrective actions if any security breach or vulnerabilities found in the logs · Monitoring the system and ensure the system available 24/7. · Maintain the best practices and security standards. · Design and implement security solutions that protect the organization's On-prem / cloud infrastructure, applications, and data from security threats. · Responsible for conducting regular security assessments of the organization's On-prem / cloud environment to identify potential security vulnerabilities and recommend appropriate remediation measures. · Configure and maintain various security tools such as firewalls, intrusion detection and prevention systems, and security information and event management (SIEM) systems to ensure optimal protection against security threats. · Regularly monitor the syslog’s and take corrective actions if any security breach or vulnerabilities found in the logs. · Run VAPT tools to mitigate the security vulnerabilities. · Responsible for managing access controls for cloud resources, including user authentication and authorization, identity and access management (IAM), and network security groups (NSGs). · Monitor the On-prem / cloud environment for security incidents and respond promptly to any security breaches or threats. · Create and maintain security policies and procedures for the organization's On-prem / cloud environment, including disaster recovery plans, incident response plans, and security awareness training for employees. · Keep up-to-date with the latest security trends and best practices to ensure that the organization's On-prem / cloud environment remains secure against evolving security threats · Review and the apply the WAF polices to protect against DDoS and application related attacks. · Test the WAF rules and ensure they block malicious traffic. Qualifications & Technical Skills: Min year of experience -10 years

• B.Sc. Computer Engineering or Equivalent
• Security Incident Handling & Response
• Security Management Frameworks
• Firewall/IDS/IPS (Palo Alto, Fortinet, Cisco etc.,)
• Vulnerability management (VAPT)
• SIEM Management
• Data Management Protection
• Advanced Malware Prevention
• Identity & Access Management
• AWS: IAM, KMS, VPC, Security Groups, Network ACLs, VPC endpoints, CloudWatch, VPC Flow Logs
• Logging and Monitoring, SIEM, Syslog
• CloudFront, WAF and Certificate Management
• Technical Certifications like CEH, Security+, CISSP etc.,