Company Overview:

Sysmind Tech PVT LTD is a leading provider of cybersecurity solutions, specializing in threat detection, incident response, and security intelligence. We empower organizations across various sectors to proactively defend against evolving cyber threats. Our expertise lies in leveraging cutting-edge technologies and a deep understanding of the threat landscape to deliver robust and tailored security solutions.

Role Overview:

As a Detection Engineer / SOC Specialist at Sysmind Tech, you will be at the forefront of our security operations, responsible for developing, implementing, and maintaining advanced threat detection capabilities. You will collaborate closely with security analysts, incident responders, and other stakeholders to identify and mitigate security risks, ensuring the confidentiality, integrity, and availability of our clients' critical assets. Your work will directly contribute to enhancing our clients' security posture and minimizing the impact of potential security incidents.

Key Responsibilities:

- Develop and implement custom detection rules and alerts within SIEM platforms (Splunk) to identify malicious activity and security vulnerabilities.

- Analyze network traffic and endpoint data using NDR and EDR solutions to detect and respond to advanced threats.

- Research and implement MITRE ATT&CK TTPs to improve detection coverage and identify gaps in security controls.

- Investigate security incidents and alerts, providing timely and accurate analysis and recommendations for remediation.

- Collaborate with security analysts and incident responders to develop and improve incident response procedures.

- Maintain and improve the performance and scalability of security monitoring infrastructure.

- Stay up-to-date on the latest security threats, vulnerabilities, and attack techniques.

- Contribute to the development of security documentation and training materials.

Required Skillset:

- Demonstrated ability to develop and implement detection rules and alerts within SIEM platforms, particularly Splunk.

- Proven expertise in analyzing network traffic and endpoint data using NDR and EDR solutions.

- Deep understanding of the MITRE ATT&CK framework and its application to threat detection.

- Strong proficiency in Linux operating systems and command-line tools.

- Excellent analytical and problem-solving skills, with the ability to investigate complex security incidents.

- Effective communication and collaboration skills, with the ability to work effectively in a team environment.

- Bachelor's degree in Computer Science, Information Security, or a related field.

- Ability to work on-site in Hyderabad.