Senior Security Analyst - Pune, India - NorthStar HR Consultants

    NorthStar HR Consultants
    NorthStar HR Consultants Pune, India

    Found in: Appcast Linkedin IN C2 - 1 week ago

    Default job background
    Description

    Job Title - Senior Security Analyst

    Job Location - Baner, Pune

    About Company

    Our client is a pioneering Identity SecOps provider that arms identity and cybersecurity teams with end-to-end, real-time identity security posture management and threat detection. They are designed to secure identity and access in any cloud (e.g. AWS, Azure), as well as on-premises or data centres. In 2022, Gartner recognized our client as a Cool Vendor in Identity-First Security.

    The product is heavily driven by data analytics as well as AI/ML (in the near future). The core idea is to analyze events & logs from enterprise systems & networks to enable the use cases we are trying to solve in the area of identity & access security.

    Position Overview

    As a Sr. Security Analyst, you will play a crucial role in conducting meticulous assessments, orchestrating proactive monitoring, and spearheading strategic enhancements to fortify and advance our identity security offerings. You will be helping our customers strengthen their identity security posture and maintain compliance with industry regulations by analyzing, detecting, and responding to identity-related threats, as well as providing strategic guidance and recommendations to defend against evolving threats and safeguard customers' critical assets.

    Responsibilities

    ● Leverage the companies Identity SecOps platform to monitor and analyze identity-related threats and incidents, including account compromise, identity theft, and unauthorized access attempts.

    ● Lead incident response efforts for identity-related security incidents, coordinating with cross-functional teams - both internal and external - to contain, mitigate, and remediate security breaches on time.

    ● Maintain accurate and detailed documentation of security incidents, investigations, and remediation activities, and prepare comprehensive reports for management and stakeholders.

    ● Facilitate regular monthly calls with customers to ensure alignment with their security objectives and address any concerns or inquiries. Provide weekly reports on security posture, incident trends, and mitigation efforts. Promptly communicate critical alerts to customers as they occur to maintain transparency and trust in our services.

    ● Conduct proactive monitoring of identity-related security events and anomalies by leveraging the companies Identity SecOps platform.

    ● Conduct risk assessments and impact analyses of identity-related security risks, prioritize remediation efforts, and implement controls and safeguards to mitigate identified risks effectively.

    ● Promote security awareness and best practices related to identity security among employees, partners, and customers through training sessions, educational materials, and outreach initiatives.

    ● Stay abreast of emerging threats and vulnerabilities in the identity security landscape, leveraging threat intelligence sources to enhance detection capabilities and help develop proactive security measures in our product.

    ● Collaborate closely with product management, engineering team, and other stakeholders throughout the product development lifecycle.

    ● Thrive in a dynamic startup environment, contributing to a culture of innovation and excellence.

    Requirements

    ● At least 8 years of hands-on experience in cybersecurity, with a focus on identity security, authentication, and access management.

    ● Strong understanding of identity protocols and standards, such as SAML, OAuth, OpenID Connect, and LDAP.

    ● Proficiency in security analysis tools and technologies, including SIEM, SOC, and SOAR solutions, XDR/EDR, intrusion detection/prevention systems, and identity and access management (IAM) platforms.

    ● Proficiency in scripting and programming languages (e.g., Python, PowerShell) for automation, data analysis, and scripting purposes, enabling the creation of efficient analysis scripts and automation workflows to enhance security operations and streamline processes.

    ● Familiarity with security frameworks and compliance requirements, such as SOC 2, GDPR, HIPAA, and PCI DSS.

    ● Excellent attention to detail, analytical and problem-solving skills, with the ability to analyze complex security incidents and recommend effective mitigation strategies.

    ● A solid understanding of cybersecurity concepts, principles, and best practices, with experience in security testing methodologies and tools, is a significant advantage.

    ● Relevant certifications such as CISSP, CISM, CompTIA Security+, or GIAC certifications (e.g., GCIH, GCIA) are preferred.

    ● Strong communication and collaboration skills.

    ● Ability to thrive in a fast-paced, dynamic work environment.

    ● Master's or Bachelor's degree in Computer Science, Engineering, or a related field.