Description Infosys Public Services is the leader in consulting, technology, and next-generation services. We partner with US and Canadian public sector organizations to help them stay ahead of the innovation curve.
Our technology solutions, combined with proven best-practices and execution excellence enable our clients to renew themselves and build new capabilities to improve mission outcomes.
We are pushing the limit of what is currently possible towards completely new areas and then executing these ideas to perfection.
Position Description (scope of work or brief narrative) :
Job Description :
Security incident handling, investigating issues to determine if there is a real security incident or a false positive, notifying customers as needed, and sending customers standardized emails specifying the steps they need to take to fix the problems.
Experience with managing Security incidents and monitoring on premise and cloud.
Monitor SIEM Dashboards from Splunk / customized SIEMs and generate customer specific dashboards and reports, integration with customer portals / ticketing system /
Change management involves processing change requests relating to security devices such as firewalls, IP and URL Blocks, rules updates, intrusion detection systems.
Device and health monitoring involves troubleshooting network connectivity problems concerning managed security devices and work with Tier2 / Tier3 Support engineers and / or vendor’s / partner technology teams on device replacement / reconfigure
The ability and flexibility to work all available shifts, Prepare Shift turnover and Shift Report to ensure continuous smooth continuous workflows between shifts
Guide junior Security operations teams in incident response and SOC functions
Must be highly motivated with the ability to self-start, prioritize, multi-task and work in a team.
Willingness to learn new technologies and flexibility with shifts and after hours’ support.
Required years of experience, training, technical skills, and other requirements for job performance :
experience responding to information system security incidents, ability to identify and determine root causes of incidents and provide any required documentation and possible evidence to authorized personnel who carry legal or investigative authorities
Qualification / Experience :
Bachelors' degree in Information technology, Engineering, or other similar degree focusing on technology and law.
Good Understanding of networking protocols such as IPVPN, TCP / IP, UDP, IPSec, DNS, NTP, Firewalls, ACLs
Moderate knowledge of networking fundamentals (TCP / IP, Network Layers, etc.)
Knowledge of malware operation and indicators
Knowledge of current threat landscape (threat actors, APT, cyber-crime, etc.)
Protocol analysis experience using tools such as Wireshark, Gigastor, Netwitness, etc.
Experience with SIEM tools and platforms such as : ArcSight, Splunk, FireEye, NetIQ, Cisco ASA, JunOS, Fortinet, Checkpoint, Tripwire, Bluecoat Proxy
Experience with ITIL or ISO frameworks
Strong understanding of ITSG-33 requirements and Government of Canada SA&A process
Experience with network management and / or performance analysis tools
Has experience performing analysis and trending of security log data from heterogeneous security devices.
Experience with reverse engineering tools, a variety of operating systems and open source computer forensic tools to perform duties.
Experience in deployment, configuration and maintenance of Security Information and Event management tools such as Splunk, Qradar, etc.
Infosys is committed to treating all people in a way that allows them to maintain their dignity and independence. We believe in integration and equal opportunity.
We are committed to meeting the needs of persons with disabilities in a timely manner, and will do so by identifying, removing and preventing barriers to accessibility and meeting accessibility standards in accordance with the AODA.
Infosys will provide accommodations for persons with disabilities throughout the recruitment process, upon request. If an applicant requests an accommodation, Infosys will consult with the applicant and provide, or arrange for the provision of, a suitable accommodation in a manner that takes into account the applicant’s accessibility needs due to disability.
Infosys Public Services Canada follows Equal Opportunity Guidelines