VAPT Specialist L3

Competencies

About Us

Established in the year 2000 in the US, we have global offices in the US, India, UK, Australia, Mexico, and Canada, with best-in-class infrastructure and development facilities spread across the globe. We are an end-to-end solution provider in Banking & Financial Services, Telecom, Healthcare, Manufacturing & Energy verticals and have successfully delivered $1 billion worth of projects for more than 20 Fortune 500 companies.
 

Position Name

VAPT Specialist L3
 

Experience

7-11 Years
 

Location

Bangalore
 

Shift Timings

Client Specific
 

Job Description

"1. Security Monitoring & Incident Detection:
•    Monitor SIEM (Security Information and Event Management) tools for security alerts and anomalies.
•    Analyze network, endpoint, and application logs for signs of threats.
•    Perform real-time threat analysis and incident triage.
•    Investigate security incidents to determine impact and severity.
2. Threat Intelligence & Analysis:
•    Identify Indicators of Compromise (IoCs) and Indicators of Attack (IoAs).
•    Stay updated on emerging cyber threats, vulnerabilities, and attack patterns.
•    Perform threat hunting to proactively detect advanced threats.
•    Analyze malware, phishing, and social engineering attacks.
3. Incident Response & Mitigation:
•    Respond to security incidents, contain threats, and escalate as needed.
•    Work closely with IT and security teams to remediate vulnerabilities.
•    Provide forensic analysis to trace attack vectors and impacts.
•    Document incidents, root cause analysis, and lessons learned.
4. Security Tools & Automation:
•    Manage and fine-tune SIEM platforms (Splunk, IBM QRadar, ArcSight, etc.).
•    Utilize EDR (Endpoint Detection & Response) and XDR tools.
•    Configure firewalls, IDS/IPS, antivirus, and other security controls.
•    Develop scripts for automating threat detection and response (Python, PowerShell, Bash).
5. Compliance & Reporting:
•    Ensure compliance with ISO 27001, NIST, SOC 2, PCI DSS, GDPR.
•    Generate detailed security reports for internal teams and management.
•    Conduct security awareness training for employees.
________________________________________
Required Skills & Qualifications
✅ Experience with SIEM tools (Splunk, QRadar, ArcSight, ELK Stack, etc.).
✅ Hands-on knowledge of SOC workflows, log analysis, and threat detection.
✅ Understanding of MITRE ATT&CK framework, Cyber Kill Chain, and OWASP Top 10.
✅ Experience with EDR/XDR, IDS/IPS, firewalls, and forensic tools.
✅ Basic understanding of network protocols (TCP/IP, DNS, HTTP, SMTP, etc.).
✅ Knowledge of malware analysis, phishing detection, and vulnerability management.
✅ Strong analytical and problem-solving skills.
✅ Ability to work in a 24/7 SOC environment (rotational shifts may apply).
"
 

Competencies

Key Skills

Security Operations & Threat Management
Threat Intelligence & Analysis
Incident Response & Mitigation
Security Tools & Automation
 

Soft Skills

Strong Communication Skills
 

Qualification

Any Bachelor's degree
 

Certifications