Lead Security Engineer

The Opportunity

Huron is redefining what a global consulting organization can be. Advancing new ideas every day to build even stronger clients, individuals and communities. We’re helping our clients find new ways to drive growth, enhance business performance and sustain leadership in the markets they serve. And, we’re developing strategies and implementing solutions that enable the transformative change they need to own their future.

As a member of the Huron corporate team, you’ll help to evolve our business model to stay ahead of market forces, industry trends and client needs. Our accounting, finance, human resources, IT, legal, marketing and facilities management professionals work collaboratively to support Huron’s collective strategies and enable real transformation to produce sustainable business results.

Join our team and create your future

Position Summary

Some equations prove quite simple: Join a high-growth company and you will enjoy abundant opportunities to shape the industry in unique, concrete ways.  Huron’s corporate team members collaborate with the business to extend their wealth of knowledge and expertise across a vast arena: Human Resources, Marketing, Finance, Technology, Legal, and Facilities. From strategy to execution, they partner with the business to solve today’s business challenges and plan for our future. It’s a vital evolutionary circle…one that explains why we profoundly value our corporate team—and why we seek out only the most committed individuals.   

If you’re aiming to maximize your potential, Huron will put a roadmap in your capable hands and say, simply, drive. You already possess the passion and expertise to achieve greatness.  Now let us help get you there. 

Real-world visibility.   Top-notch opportunities.  First-rate recognition.

Let’s get to work - together.

Qualifications

POSITION SUMMARY: 

Under limited direction, this individual is responsible for leading Huron’s growing security operations team, helping people, creating policies and managing technology. The Individual would be responsible for the day-to-day security operations, proactively responding to important incidents, identifying gaps in the logging and monitoring process at the same time tuning rules in various security event management platforms. This role requires the candidate to work collaboratively with other teams in the corporate function that includes Network, Storage, compliance and other Infrastructure teams. As this role necessitates a lot of communication with the Onsite and Offshore team, Good Verbal and written communication is required. The individual should be dynamic, quick learner and should also have good presentation skills.

Responsibilities:

• Manage the security operations team and their day-to-day proceedings.
• Help and guide the team with comprehensive security incident investigations. 
• Create and present risk and performance indicator reports to the management and wider team.
• Tune out various correlation and configuration rules on security logging and monitoring solutions. 
• Be available for the team during critical incidents and investigations. 
• Review and communicate effectively the findings of any security investigations to the management and security team.
• Review incident closures on the SIEM platform and help the team improve incident investigation documentation.
• Improvise and update the overall security operations policy and procedure documentation including runbooks for various incidents.
• Actively perform risk assessments and identify gaps in the defensive mechanism of the firm.
• Participate in wider security group meetings and purple team activities.
• Research security enhancements and make recommendations.
• Stay up to date on information technology trends and security standards.
• Hands-on performing threat and Malware analysis, including performing sandboxed analysis on malwares and identifying indicators of compromise.
• Pro-active follow up on potential security risks and incidents with the relevant stakeholders and reporting the same to necessary security groups.
• Creating new event log dashboards, reports and alerts enhancing the overall incident identification and triage process.

Requirements:

• Minimum of bachelor’s degree in computer science or related field.
• Security certifications from ISC2, SANS, Offensive security, TCM Security, ISACA, other renowned incident response certification is a must.
• Good experience and understanding of security operations, their day-to-day work and incident lifecycle management.
• Good Experience in administering, managing and implementing security tools, including but not limited to SIEM/SOAR, EDR/AV, Firewall/Proxy.
• Strong Technical background in incident response, monitoring and active threat hunting.
• Experience in leading security operations team.
• Understanding of network security devices, including but not limited to firewalls, proxies, SIEM, antivirus, IDPS and their logging mechanisms.
• Thorough understanding of TCP/IP, networking concepts and internet protocols
• Experience in tuning SIEM ruleset and configuration changes.
• Experience in windows, linux and macintosh logging mechanisms including ability to identify and investigate machines during post incident analysis.
• Experience with scripting and process automation to enhance security operations.
• Experience in performing dynamic and static malware analysis on sandboxed environments.
• Ability to absorb extremely technical information in limited timeframes.
• Good experience in logging and monitoring of cloud platforms such as AWS, Azure.  
• Understanding security operations metrics reporting and KRI/KPI evaluations.
• Strong Communication and presentation Skills

Posting Category

Corporate

Opportunity Type

Regular

Country

India