Join our dynamic team in Bangalore as a Senior SecOps Engineer, where you'll play a pivotal role in proactively monitoring our systems and data and responding to cyber threats. We are looking for someone who has interest & hands-on experience with SIEM, SOAR, Linux Administration, Network Security, Incident Response(IR), CSIRT, or SOC. As part of Kredivo’s Group Information Security team, you will report to the SecOps Lead based out of Bangalore & work closely with the Kredivo Engineering & IT team.
Responsibilities:
- Managing and optimising open-source SIEM platforms like Elastic, OSSEC or Wazuh.
- Responsible for writing security detection rules, developing parsers and establishing SIEM data pipelines.
- Monitoring SIEM dashboards to enhance detection capabilities and collaborating closely with Platform and IT teams are crucial.
- Deploying and maintaining SOAR platforms for automating security operations and incident response workflows is essential.
- Integrating security tools and APIs, creating REST API integrations, writing automation scripts and developing automation workflows/playbooks and developing automation scripts using Python.
- Monitoring security events, conducting incident response activities and performing threat hunting using open-source threat intelligence feeds and frameworks are also key aspects of the role.
Qualifications:
- Bachelors/Masters degree in Computer Science/Engineering or 5-7 years of relevant work experience.
- Certifications such as GIAC, CompTIA Security+, ISC2 or ISACA is a plus.
- Hands-on experience with SIEM tools, intrusion detection/prevention systems (IDS/IPS), endpoint detection and response (EDR) tools.
- Min 2-3yr of experience with open source tools exposure to OSSEC, Wazuh, MISP, Suricata, Wireshark etc.
- Min 3-5yrs of experience on SOC, IR or CSIRT