Cyber Defense Engineer - Karnataka, Bangalore

Full Time
Bengaluru, India
report a problem
Overview

Let's break boundaries and shape the future of technology.
Join us, at HP.

Responsibilities:

  • Intrusion monitoring, attack analysis, and incident response duties as required and directed.
  • Monitor open source feeds and reporting on the latest threats against computer network defenses.
  • Utilize attack and malware analysis techniques, advanced statistic and dynamic analysis to identify and assess malicious software and behaviors.
  • Provide technical expertise regarding the defense of company information systems and networks.
  • Initiate computer incident handling procedures to isolate and investigate potential network information system compromises.
  • Perform malware and/or forensic analysis as part of the incident management process.
  • Identify risks to computer systems and make written and verbal remediation recommendations to leadership
  • Supports incident escalation and assesses probable damages, identifies damage control and remediation, and assists in developing courses of action.
  • Coordinate efforts of and provide timely updates to multiple business units during response
  • Assists with implementation of counter-measures or mitigating controls
  • Takes an active part in the containment of incidents.
  • Applies cyber defense concepts to go-forward environments such as public cloud - AWS, Azure, etc.

Knowledge and Skills Required:

  • • Must have previous working knowledge of cyber threat capabilities and technical capabilities to defend networks and systems.
  • • In-depth understanding of OSI model, network port, protocol and service expertise.
  • • Advanced knowledge and experience with Windows and Linux Operating Systems and common applications
  • • Advanced knowledge of normal operating system behavior.
  • • In-depth knowledge of Advanced Persistent Threat (APT) tactics and related countermeasures:
  • • Advanced understating and previous working experience with system forensics, incl one or more of the following:
  • * file system, registry, etc. artifacts commonly associated with malware or malicious activities.
  • * Memory analysis
  • * Ability to distinguish between indicators of advanced and common malware/attack
  • * Malware reverse engineering
  • • Proficiency with the use of network analysis tools and network security devices
  • • Understanding of core networking concepts (TCP/IP, etc.) and common protocols (HTTP, FTP, etc.).
  • • Experience with AntiVirus, Intrusion Detection Systems, Firewalls, Active Directory, Web Proxies, Vulnerability Assessment tools and other security tools found in large enterprise network environments; along with experience working with Security Information and Event Management (SIEM) solutions.
  • Familiarity with various network and host based security applications and tools, such as network and host assessment/scanning tools, network and host based intrusion detection systems, and other security software packages.
  • Experience with AWS and Azure and strong plus
  • Experience with next-gen Endpoint Detection and Response Tools a strong plus
  • Familiarity with automation concepts and proficiency in scripting languages such as python, perl, ruby, javasscript, powershell, etc.
  • Experience with AWS and Azure and strong plus
  • Strong analytical skills and critical thinking skills
  • Effective communication skills (both written and verbal)
  • Ability to present technical concepts to non-technical audiences
  • Sound decision-making and judgment, especially under pressure.
  • Strong organization, prioritization, and rationalization skills.

Qualifications:
Education and Experience Required:

  • Bachelor's Degree or higher in the field of Computer Science or Information Security or related field (may be substituted for experience and industry certifications)
  • 3-5 of experience in cyber security or related technology field preferred
  • 2+ years of experience in incident response, forensics, or related activities.
  • Individual technical Cyber Security Certification through one of the recognized bodies preferred: SANS, ISACA, (ICS)2, CompTIA, Cisco, CERT etc.



Share this job:

Hewlett-Packard

Let's break boundaries and shape the future of technology.
At HP, we don't just believe in the power of technology, we believe in the power of people when technology works for you. We believe in applying new thinking and ideas to improve the way our customers live and work. If you are going to do something, Make it Matter
Visit Hewlett-Packard's Social Media pages:
Company Industry: Information Technology and Services
Company Type: Public Company
Company Size: 10,001+