Consultant - EDR Job

YASH Technologies is a leading technology integrator specializing in helping clients reimagine operating models, enhance competitiveness, optimize costs, foster exceptional stakeholder experiences, and drive business transformation.

At YASH, we’re a cluster of the brightest stars working with cutting-edge technologies. Our purpose is anchored in a single truth – bringing real positive changes in an increasingly virtual world and it drives us beyond generational gaps and disruptions of the future.

We are looking forward to hire EDR Professionals in the following areas :

What you should have?

• Desired candidate s/he should have 7-9 years experience in cyber security engineering role with respect to design, implement and run EDR/ XDR/ MDR solutions delivery with hands-on experience in various EDR solutions like Sophos EDR, Sophos CloudOptix, MS Defender, CloudStrick, Trendmicro.
• Bachelor’s degree in information technology or related field
• Information security experience in higher education or state/local government
• Conducted detailed analytical queries and investigations, identify areas that require specific attention, identify indicators of compromise (IOC) or Indicators of Attack (IoA) that need further investigation, and develop use cases and rules.
• Hands-on experience in security incident response lifecycle and its phases
• Hands-on experience in static and dynamic malware analysis.
• Hands-on experience in event and log analysis on Windows, MACBook endpoints

What you will do?

• Endpoint Protection (EDR/Threat Hunting/Encryption/Antivirus):
• Capable to fine tune incidents to avoid false positive alerts
• Identify, develop and propose enhancements to existing processes and operations
• Ability to read and understand system data including security event logs, system logs, application logs, and device logs
• Expert in analyzing & correlating logs from various security tools
• Demonstrate ability to react quickly & take decisions for high priority incident
• Ability to analyse incidents, independently form conclusions, and present findings and recommendations to other analysts
• Exposure to SOPs creation related to different process and incident investigation analysis
• Ability to investigate malicious activity to understand nature of threat
• Ability to Collaborate/Interact with different teams in SOC Exposure to Threat hunting activity
• Exposure in email analysis to categorize it as a Spam/Scam, Malicious, Legitimate Ability to analyze different IOCs and take actions accordingly
• Project management and delivery Designing and implementing EDR solutions
• Administration and maintenance of the endpoint protection infrastructure
• Validate Encryption status as part of Incident Response process.
• Encryption is enabled as a part of system build process by EUC/ IT Teams teams
• Validate Encryption status as part of Incident Response process. Health/status check of the server & reporting on endpoints (Desktops, Laptops, Mobile Devices, onprem servers, Cloud workloards)
• Maintain 100% encryption for laptop population
• Maintain periodic updates to ensure compliance with N-3 minor version & N-1 major version compliance for sensors that communicated in last 10 days
• Block connection to Malicious URL’s, Vulnerability scanning & patching, Identify blacklisted/unsupported software usage on endpoints
• Configuring security systems, analyzing security requirements, and recommending improvements.
• Monitoring network traffic for suspicious behavior.
• Creating network policies and authorization roles and defending against unauthorized access, modifications, and destruction.
• Consulting with staff, managers, and executives about the best security practices and providing technical advice.
• Configuring and supporting security tools, such as firewalls and anti-virus software.

At YASH, you are empowered to create a career that will take you to where you want to go while working in an inclusive team environment. We leverage career-oriented skilling models and optimize our collective intelligence aided with technology for continuous learning, unlearning, and relearning at a rapid pace and scale.

Our Hyperlearning workplace is grounded upon four principles

• Flexible work arrangements, Free spirit, and emotional positivity
• Agile self-determination, trust, transparency, and open collaboration
• All Support needed for the realization of business goals,
• Stable employment with a great atmosphere and ethical corporate culture