About Client: The Client is a renowned multinational technology company which has grown to become one of the world's most influential and successful companies in the field of software development, computer hardware, and related services. The Client's primary focus revolves around developing, manufacturing, and licensing a wide range of software products, including the globally recognized operating system, Windows. It has released several versions of Windows, catering to both personal computers and servers, which have become integral to the functioning of millions of devices worldwide. Apart from Windows, client offers an extensive portfolio of software applications and tools for both individuals and enterprises. Moreover, client has a substantial presence in the field of artificial intelligence (AI) and research, working on projects like the development of conversational AI agents, natural language processing, and machine learning technologies. Rate Range: $90-$100/HrJob Description: Role Responsibilities:
- Perform security monitoring and analysis leveraging SIEM and security tools
- Conduct technical analysis and correlation of operating system, database, application, cloud and network logs to triage potential security events and incident investigations
- Analyze tactics, techniques, and procedures (TTPs) for various intrusion sets
- Develop custom SIEM content and tune security tools to prevent, detect and respond to malicious activity
- Utilize EDR and network security tools to conduct host and network-based detection analysis
- Conduct vulnerability scans and participate in tabletop exercises
- Improve the incident response process through tabletop exercises, playbook development, and standard operating procedures
- Day to day, primarily first responder to incidents
Requirements and Experience:
- Must have experience using various Threat Intelligence tools
- Experience managing ticket escalations, and incident response coordination across engineering, security, and management teams
- Experience in IDS/IPS, SIEM, EDR, DLP, Firewalls, DNS security, cloud security, Windows and Linux systems, etc.
- Familiarity with the Cybersecurity Framework (CSF) and a threat intelligence framework such as MITRE Telecommunication&CK
- Deep knowledge of threat and vulnerability analysis
- Extremely detail-oriented and ability to quickly investigate ongoing and emerging threats
- Experience in developing, acquiring, maintaining and implementing threat intelligence
- Strong computer knowledge (hardware & operating systems.
- Strong network knowledge
- Excellent communication skills (Phone/Email)
- Strong forensics background (soft requirement)
- Assist with weekly presentation slides and project updates
- Ability to write clear emails to non-technical staff and send incident updates to upper management when required.
- Ability to communicate with confidence and ensure the highest level of professionalism.
- Ability to interact and assist users over the phone
About ApTask: Join ApTask, a global leader in workforce solutions and talent acquisition services, as we shape the future of work. We offer a comprehensive suite of offerings, including staffing and recruitment services, managed services, IT consulting, and project management, providing unparalleled opportunities for professional growth and development. As a member of our dynamic team, you'll have the chance to connect businesses with top-tier professionals, optimize workforce performance, and drive success for our clients across diverse industries. If you are passionate about excellence, collaboration, and innovation, and aspire to make a meaningful impact in the world of work, come join us at ApTask and be a part of our mission to empower organizations to thrive. Applicants may be required to attend interviews in person or by video conference. In addition, candidates may be required to present their current state or government issued ID during each interview. Candidate Data Collection Disclaimer: At ApTask, we prioritize safeguarding your privacy. As part of our recruitment process, certain Personally Identifiable Information (PII) may be requested by our clients for verification and application purposes. Rest assured, we strictly adhere to confidentiality standards and comply with all relevant data protection laws. Please note that we only collect the necessary information as specified by each client and do not request sensitive details during the initial stages of recruitment. If you have any concerns or queries about your personal information, please feel free to contact our compliance team at ...@aptask.com