Share this Job

Security Analyst Cyber Response

Date:  Aug 2, 2022
Location: 

Pune, MH, IN

Requisition ID:  31882

About Avaya

Businesses are built by the experiences they provide, and every day millions of those experiences are delivered by Avaya Holdings Corp. (NYSE: AVYA). Avaya is shaping what's next for the future of work, with innovation and partnerships that deliver game-changing business benefits. Our cloud communications solutions and multi-cloud application ecosystem power personalized, intelligent, and effortless customer and employee experiences to help achieve strategic ambitions and desired outcomes. Together, we are committed to help grow your business by delivering Experiences that Matter. Learn more at www.avaya.com.

About The Opportunity

Working within the Cyber Emergency Response Team reporting to the Senior Security Manager the successful candidate will respond to incidents triaged from SOC, monitor alerts follow indicators, threat hunt, configure, tune, script and program security tools. Engage with operational teams to oversee secure configuration of equipment, feed SIEM and recommend secure solutions within an on-prem, hybrid and multi-cloud environment. Share skills and knowledge with the team whilst taking on new skills, as required to succeed. The role requires flexibility both in time and skills and an ability to interact cross function, communicate at all levels and positively influence security across Avaya.

About The Requirements

EXPERIENCE

The successful candidate will have a background in security, possibly with experience in an MSSP or large Enterprise environment operating in a SOC or Cyber Response group with Tiers 1-4 experience. 
With at least an educational background in programming the candidate will be able to understand how to code and script for SIEM solutions particularly KQL and JSON.

With Windows, Linux and MAC operating system experience the candidate will have broad knowledge of Firewalls, Switches, Hubs, Routers, Proxies, DNS and other networking solutions and best practice methods to securely monitor and configure. Knowledge of LAN, WAN are an imperative and experience of at least one if not all cloud solutions such as GCP, AWS, AZURE.

The successful candidate will likely have Microsoft 365 skills, particularly defender and sentinel and Elastic Stack experience.
SKILLS & COMPETENCIES

The incumbent must…
•be a sympathetic team player willing to share knowledge, experience and skills to better enable peers, team leads, project groups and be willing to learn new skills 
•have a keen interest in security with knowledge of threat, bad actors and at least an academic knowledge of their methods, techniques and drivers 
•have strong written and verbal communication skills with possibly a customer Service background 
•have experience of KQL and JSON possibly other security and SIEM related scripting languages
•have experience of Elasticsearch, Kibana, ELK and Elastic Security with demonstrable skills with programming and configuration.
•have experience of Microsoft Defender, Sentinel and other aspects of the Microsoft 365 security stack
•have Security Operations and Cyber response experience with an ability to maintain focus while performing in depth log analysis, triage, threat hunting and use case building.
•possess an understanding of industry standards such as PCI DSS, ISO 27xxx, HIPAA, NIST, GDPR, etc.
•understand network technology and physical, virtual components
•exhibit flexibility and an ability to think creatively and in a way that identifies solutions.
•be willing and able to analyse and share opinions on challenges and issues suggesting possible solutions to both simple and complex security problems and threats.
•be able to quickly assess priorities, triage matters, solve complex problems.
•understand business processes, exhibit calm under pressure and act with the highest levels of professionalism and integrity. 
•treat others with respect demonstrating high levels of motivation and achieve success without task-by-task direction.

ADDITIONAL INFORMATION
Whilst this role is 8x5 the nature of cyber response requires flexibility in working and a willingness to see the job through and work the hours required to resolve a potential threat or work hour flexibility to meet peer, customers, and partners across a global estate. For this reason, the role is a work from home opportunity however the successful candidate must show they have a suitable, environment to work from and able to maintain their environment to a proper working standard.
 

Experience

6 - 10 Years of Experience

Education

Bachelor degree or equivalent experience

Preferred Certifications

Footer

Avaya is an Equal Opportunity employer and a U.S. Federal Contractor. Our commitment to equality is a core value of Avaya. All qualified applicants and employees receive equal treatment without consideration for race, religion, sex, age, sexual orientation, gender identity, national origin, disability, status as a protected veteran or any other protected characteristic. In general, positions at Avaya require the ability to communicate and use office technology effectively. Physical requirements may vary by assigned work location. This job brief/description is subject to change. Nothing in this job description restricts Avaya right to alter the duties and responsibilities of this position at any time for any reason. You may also review the Avaya Global Privacy Policy (accessible at https://www.avaya.com/en/privacy/policy/) and applicable Privacy Statement relevant to this job posting (accessible at https://www.avaya.com/en/documents/info-applicants.pdf).

#LI-LC2