Cyient is a global engineering and technology solutions company. As a Design, Build, and Maintain partner for leading organizations worldwide, we take solution ownership across the value chain to help clients focus on their core, innovate, and stay ahead of the curve. We leverage digital technologies, advanced analytics capabilities, and our domain knowledge and technical expertise, to solve complex business problems.
With over 15,000 employees globally, we partner with clients to operate as part of their extended team in ways that best suit their organization’s culture and requirements. Our industry focus includes aerospace and defence, healthcare, telecommunications, rail transportation, semiconductor, geospatial, industrial, and energy.
Job Description
The Cyber Security Purple-Team Analyst shall be responsible for conducting advanced purple team security assessments & testing to identify and mitigate potential threats to an organization's information systems and networks.
As a member of the Global Cyber Security team, the individual will work closely with both the hunting & red and blue teams to simulate real-world attack scenarios, evaluate the effectiveness of the organization's defensive measures, and provide recommendations for improving security controls and procedures.
Key Responsibilities:
Conduct advanced security assessments and testing to identify and mitigate potential threats to an organization's information systems and networks.
Implementation and management of Threat Intelligence Platform
Simulate real-world attack scenarios, evaluate the effectiveness of the organization's defensive measures, and provide recommendations for improving security controls and procedures.
Collaborate with the red team to develop and implement offensive security techniques, and with the blue team to develop and implement defensive security measures.
Participate in incident response and incident triage activities, including forensic analysis and threat hunting.
Stay up-to-date with the latest threats, attack techniques, and security trends, and provide training and guidance to other members of the security team.
Work with other departments and teams to ensure that security is integrated into all aspects of the organization's operations.
Communicate effectively with management and stakeholders, providing regular updates on security risks and incident response activities.
Performs security monitoring, security and data/logs analysis, and forensic analysis, to detect security incidents, and mounts incident response.
Investigates and utilizes new technologies and processes to enhance security capabilities and implement improvements.
Coordinates efforts towards Protecting computers, networks, software, data, and/or information systems against viruses, worms, spyware, malware, intrusion detection, unauthorized access, denial-of-service attacks, and an ever increasing list of attacks by hackers acting as individuals or as part of organized or in-organized threat actors
Handles tasks on Network Vulnerability Assessments, Web Application Security
Applies/Coordinates & works on concepts around Security Operation workflow, Threat, Incident and Investigation Management
Adept with Cyber Security Architecture, Basic principles of Threat modelling and participates/leads in performing cyber security risk assessments
Applies or derives practical references from OWASP, NIST , ISO 27001 and other suitable frameworks for dynamically prioritized cyber security requirements.
Open to learn, adopt new technology and use various tools such as OWASP ZAP, Burp Suite, Nessus, etc. as required for performing assessments
Write Python , Shell Scripts when required
Leads , coordinates and delivers Log Integration for Security Monitoring
Performs R&D on open source technology for meeting security objective
Qualifications & Experience:
Has BSc/MSc/BE/ME/BTech/MTech in IT or allied fields with good standing
A minimum of 5 years of experience in cybersecurity, with a focus on offensive and defensive security operations.
Strong understanding of security best practices, industry standards, and regulatory requirements.
Experience with security testing tools and methodologies, incident response, and forensic analysis.
Strong analytical and problem-solving skills, with the ability to identify and assess complex security risks.
Excellent communication and interpersonal skills, with the ability to work effectively in a team environment.
Security Certifications such as CEH , CISA , CISSP, OSCP, Security+, GSEC, GCIH or equivalent will be good to have.
Programming / Scripting Experience is highly desired.
Skills & Experience
Cyber Operations, SIEM,SOC, Vulnerability Management
Cyient is an Equal Opportunity Employer.
Cyient recruits, employs, trains, compensates, and promotes regardless of race, color, ancestry, religion, sex, national origin, sexual orientation, age, citizenship, marital status, disability, gender, gender identity or expression, veteran status, and other protected status as required by applicable law. We are proud to be a diverse and inclusive company where our people can focus their whole self on solving problems that matter.
Read Full Description