Location: Mumbai, INDIA
The Network & Security Analyst will be an executive who is part of the Team entrusted to drive the overall agenda of the Network Security of the Company in accordance with the established policies and procedures & program through various initiatives by working closely with various stakeholder including external entities such as vendors / third parties and provide periodic updates to the Information Security officer and Information Security Committee / senior management.
Work closely with IT and other functional teams to:
- Lead the design, review, and implementation of Network & security initiatives.
- Identify significant actual and potential Network & Security problems, trends, and weaknesses and recommends specific modifications and solutions to reduce systems security risks.
- Provide architectural design and coordinate the implementation of security solutions to integrate into existing network environment.
- Establish requirements and make recommendations on the appropriate infrastructure protection tools, methods, and technologies.
- Review, create and update security policies on network & Security devices, procedures and standards, and present them to management for endorsement.
- Facilitate organizational-wide communications and institute measures to ensure information security awareness and compliance.
- Review new and existing systems, networks, and software designs for potential security risks, and resolve integration Network & security issues across disciplines.
- Develop the project plan for the implementation, identify major milestones and activities, and coordinate development and implementation.
- Recommend action for containment and remediation based on findings and following up to ensure the implementation of corrective actions.
- Develop and implement operational response procedures to maximize visibility, maintain stability and prioritize criticality of identified issues.
- Investigate and respond rapidly to identify security incidents.
Should have troubleshooting technical skills to solves issues. - Recommend and implement tools, standards and procedures to facilitate future investigations.
- Educate IT team members in security best practices.
- Collaborate with IT Teams to incorporate security best practices into daily workflow and procedures.
- Assist with development and implementation of Security Awareness Training for entire organization.
- Management Dashboard on a periodic basis for Cyber Security Events
Recommend secure practices for Cloud Environment
Skills & Competencies
- Strong knowledge of the requirement of Computer Applications and Network security technologies and principles
- Firewall rule base management tools
- Log analysis software
- Internet proxy servers, Routers, Switches, SD WAN , WAF, Proxy systems, WIFI
- Various operating systems (e.g. Windows and Linux)
- Network security (Firewalls, proxies, DNS, IPS, switching/routing, encryption, etc.
- Excellent oral and written communication skills and interpersonal skills.
- Self-starter, go-getter with ample resourcefulness to get things done
- Demonstrated ability to perform under tight timelines
- Strong communication Skills and ability to mentor
- Demonstrated skill in developing policies and procedures
Qualifications & Experience
- Bachelor’s in Computer Science BE or BCA.
- Seven (7) + years’ experience in firewalls, routers, proxies, load balancers, and WAF.
- Excellent oral and written communication skills and interpersonal skills.
- Proficient in network protocols such as TCP/IP, HTTP/HTTPS, SSH, SSL, BGP, DNS, SNMP, and VRRP.
- Proficient in firewalls (PaloAlto, Fortinet), Cisco Routers & Switches, proxies, load balancers, WAF, IPS and Windows-based systems, Cisco & HP WIFI products
- Proficient at securing systems (e.g. common operating systems, network equipment).
- Proficient in security concepts such as identity management, least privilege, defence in depth and separation of duties
- Proficient in security technologies such as IPS, VPNs, Antibot, Web filtering, DDoS, and vulnerability management. Working knowledge of common web architectures and related security risks.
- Working knowledge of large-scale networks including architecture and security risks.
- Experience writing technical specifications and operational documentation