Lead Information Security Analyst_SecOps

About the job

What does the team do?

This opportunity is part of the evolving cybersecurity group, laser-focused on setting industry benchmarks in managing and guarding against digital risks in a "Cloud Native - DevOps Only" environment. It is a lean, mean, special action group where every cyber sentinel gets the chance to work across domains, has the independence to challenge the status quo, and evolves cyber practices to the next level of maturity. Our core competencies revolve around "Product & Platform Security," "Cloud Native Risk Management," and "Detection & Response."

What will you be doing?

• Alert triage - Investigate EDR, Entra, Email & SIEM alerts to identify threats & anomalies
• Perform detailed technical investigation on security incidents, root cause analysis, recommend and mitigate the cyber incident as per the security framework
• Create Incident Response process/runbooks/SOPs, ensure continuous documentation and reporting
• Provide security advisory, develop use cases, support in deployment/integration, and fine-tuning of security platforms with other IT teams
• Collaborate with Corporate IT teams to strengthen InMobi's security posture & reduce attack surface
• Utilize open-source threat intelligence to evaluate threats and analyze their impact in InMobi Environment, and deploy necessary detection/remediation procedures
• Collaborate with other Tech and Non-tech teams to achieve the cybersecurity objectives of InMobi
• Coordinate with stakeholders to understand the infrastructure, products, and business processes to ensure adequate security controls for the organization
• Provide management with deep insight into threats, new threat threat detection methods and technically lead other team members to resolve complex security problems

What is expected of you?

• Minimum 9 years of experience in Security Operations/Incident Management is required
• Self-motivated, Self-governing individual with a penchant for Cybersecurity and a sharp eye for details
• Strong leadership skills in owning a technical lead on security issues at the Org and driving it towards closure
• Strong technical leadership skills in guiding other team members for optimal outcome
• Strong ability to operate, decide & evolve in ambiguous situations
• Strong interpersonal skills, good team player, excellent written and verbal communication skills
• Strong skills in correlating events, log analysis, networking basics & and cybersecurity fundamentals
• Good knowledge of SOC frameworks - MITRE ATT&CK, NIST, cyber kill chain
• Good understanding of multiple security tools like EDR, Email security, IPS/IDS, Firewall & SIEM
• Hands-on experience in one or more Security tools like McAfee EDR, FireEye, CrowdStrike EDR, Cortex XDR & Microsoft XDR
• Exposure to Cloud Security technologies is desirable
• Exposure in implementing, securing AI technologies is desirable
• Demonstrated good customer service, curiosity to learn & adapt
• GIAC / CySA+ or equivalent certified professional is preferred
• Open to learning new security concepts