Senior Security Analyst - 300522
Gurugram, Haryana, India
Applications have closed
About SirionLabs:
SirionLabs, a global SaaS company, is looking for people who are driven to make a difference.
Bringing together leading innovation, unrivaled Contract Lifecycle Management expertise, and a deep commitment to customer success, SirionLabs helps the world’s leading businesses contract smarter. SirionLabs’ AI-powered Smarter Contracting Platform brings legal, procurement, and business teams together to author stronger agreements, manage risk and strengthen counterparty relationships.
Today, analyst firms such as Forrester, Spend Matters, IDC and G2 agree that SirionLabs is a leader in CLM and world-leading businesses including Vodafone, Unilever, DHL, and BNY Mellon trust SirionLabs to create, control, and manage over 5m contracts worth more than $450b, in 80+ countries around the world. SirionLabs is backed by leading VC firms and has gone through a Series D round. SirionLabs is a 700+ people company with 9 offices globally.
Job Role: Senior Security Analyst
Years of Experience required: 7-10 Years
Work Location: Gurgaon
Responsibilities:
- Architect and Implement security controls in multi-cloud and multi-region hosted SaaS platform (AWS, Azure, Google)
- Architect and Implement security controls in corporate IT systems (Endpoints, Development & Data Center, etc.)
- Lead ongoing operational monitoring of effectiveness of implemented security controls and work with DevOps and Engineering teams to remediate or mitigate identified non-compliances and security weaknesses
- Design and implement Security Operation Center (SOC) plan
- Implement and administer/maintain Security Information and Event Management solution (Wazuh SIEM) along with ELK stack for log integration & management, correlation, security alert visualization and monitoring
- Integrate all IT systems (infrastructure, network, endpoints, application, database, security, etc.) with SIEM. Develop and implement necessary correlation rules, decoders, integration adaptors, threat feeds, etc.
- Implement automated and proactive security alert monitoring, alerting and response
- Develop and enhance threat hunting, SOAR and XDR capabilities
- Perform SOC operations - security monitoring, triaging, and incident response. Work closely with DevOps and Engineering teams to investigate, contain, remediate, or mitigate and respond to a security incidents.
- Create and maintain security incident response playbooks. Perform ongoing and scenario-based incident response testing. Incorporate learnings in incident response playbooks.
- Conduct ongoing Vulnerability Assessment & Penetration Testing (Internal and External) and perform management reporting. Work with DevOps and Engineering teams to remediate or mitigate identified security vulnerabilities. Administer security testing tools and environment.
- Responsible to ensure consistent implementation and maintenance of secure configurations, SOD based access controls and IT system hardening across the IT landscape. Conduct ongoing security audits/reviews in accordance with company policy and global security standards.
- Perform ongoing review of privileged user activities. Identify, investigate and respond to unauthorized access.
- Responsible for implementing and monitoring Patch Management process in all IT systems
- Perform Proof of Concept for security solutions to implement effective security controls
- Prepare metrics based periodic reports and dashboards with support from the stakeholder functions for management review
- Maintain good knowledge of current technology trends, evaluate new technologies and undertake training to strengthen IT skills as required
Educational qualifications and certifications:
Certifications: OSCP (preferred), Cloud Security Certification (Preferred), CCSP, CEH (at least two)
B.E / B.Tech (IT/ CS) / BSc (CS/IT) / MCA / MSc (CS/ (CS/IT) / BCA or postgraduate in (CS/IT)
Organizational skills:
- Self-driven and initiator
- Ability to multi-task effectively and work under pressure
- Ability to perform general mathematical calculations for the purpose of creating needs assessments, budgets, and forecasting.
- Ability to conduct research on latest security solutions and products as required.
* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰
Tags: Audits AWS Azure CCSP CEH Cloud DevOps ELK Incident response Monitoring OSCP Pentesting SaaS SIEM SOAR Vulnerabilities
More jobs like this
Explore more InfoSec / Cybersecurity career opportunities
Find even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.
- Open Information Security Specialist jobs
- Open Senior Cyber Security Engineer jobs
- Open Ethical hacker / Pentester H/F jobs
- Open Principal Security Engineer jobs
- Open Cyber Security Architect jobs
- Open Staff Security Engineer jobs
- Open Information Systems Security Officer (ISSO) jobs
- Open Product Security Engineer jobs
- Open Manager Pentest H/F jobs
- Open Cyber Security Specialist jobs
- Open Senior Information Security Analyst jobs
- Open Cybersecurity Analyst jobs
- Open Consultant infrastructure sécurité H/F jobs
- Open Chief Information Security Officer jobs
- Open IT Security Analyst jobs
- Open Cybersecurity Consultant jobs
- Open Consultant SOC / CERT H/F jobs
- Open Senior Information Security Engineer jobs
- Open Security Specialist jobs
- Open Senior Penetration Tester jobs
- Open Security Researcher jobs
- Open Cybersecurity Specialist jobs
- Open Senior Security Architect jobs
- Open IT Security Engineer jobs
- Open Security Operations Analyst jobs
- Open CISM-related jobs
- Open Windows-related jobs
- Open Network security-related jobs
- Open ISO 27001-related jobs
- Open Pentesting-related jobs
- Open Application security-related jobs
- Open Agile-related jobs
- Open GCP-related jobs
- Open Vulnerability management-related jobs
- Open SaaS-related jobs
- Open CISA-related jobs
- Open Analytics-related jobs
- Open IAM-related jobs
- Open Threat intelligence-related jobs
- Open APIs-related jobs
- Open Java-related jobs
- Open Security assessment-related jobs
- Open Malware-related jobs
- Open DevOps-related jobs
- Open Security Clearance-related jobs
- Open IDS-related jobs
- Open EDR-related jobs
- Open CEH-related jobs
- Open Forensics-related jobs
- Open Kubernetes-related jobs