Network Security Engineer L1/L2

Role Overview: As an L1 Security Monitoring Engineer, you will be a vigilant first responder responsible for the 24/7 monitoring of security systems. Your primary task will involve monitoring and analyzing alerts related to firewalls, anti-DDoS, malware proxy, and sandboxing technologies. It will be your responsibility to perform initial triage, escalate confirmed security incidents, and contribute to maintaining the overall security posture of the organization. Key Responsibilities: - Perform initial triage on all security alerts to determine their severity and authenticity. Differentiate between false positives and legitimate security threats. - Monitor and analyze IPS related alerts from Check Point products. Identify and investigate potential network intrusions and malicious traffic patterns. - Analyze reports from Palo Alto malware sandboxing to determine if a file is malicious, understand its behavior, and identify affected systems. - Monitor traffic anomalies and alerts from NetScout perimeter DDoS tools to detect and analyze distributed denial-of-service attacks against the network. - Investigate and document all security incidents and events, recording key details such as the nature of the event, affected assets, and actions taken. - Escalate confirmed security incidents and complex issues to Level 2/3 analysts or other relevant support teams, providing a detailed handover. - Follow established incident response procedures for handling standard security events. - Update and maintain security incident records in the ticketing system, ensuring all information is accurate and up to date. - Install application patches and signed software updates to enhance performance, functionality, and security standards. - Maintain the inventory of entire assets of Cyber Security solutions, update a database with respect to OS, Database, Webservers, Application details, and IP addresses pertaining to all Security Solutions under the mentioned scope. Qualification Required: - Education: BE/B-Tech/BCA (ONLY in Computer Science or IT Other Streams Not Accepted) OR Masters degree in CS/IT - Certification: Minimum 1 - CEH/ CCNA Sec/ PCNSA equivalent certification of respective OEM - Experience: 2+ years relevant experience (Note: Any additional details of the company were not provided in the job description) Role Overview: As an L1 Security Monitoring Engineer, you will be a vigilant first responder responsible for the 24/7 monitoring of security systems. Your primary task will involve monitoring and analyzing alerts related to firewalls, anti-DDoS, malware proxy, and sandboxing technologies. It will be your responsibility to perform initial triage, escalate confirmed security incidents, and contribute to maintaining the overall security posture of the organization. Key Responsibilities: - Perform initial triage on all security alerts to determine their severity and authenticity. Differentiate between false positives and legitimate security threats. - Monitor and analyze IPS related alerts from Check Point products. Identify and investigate potential network intrusions and malicious traffic patterns. - Analyze reports from Palo Alto malware sandboxing to determine if a file is malicious, understand its behavior, and identify affected systems. - Monitor traffic anomalies and alerts from NetScout perimeter DDoS tools to detect and analyze distributed denial-of-service attacks against the network. - Investigate and document all security incidents and events, recording key details such as the nature of the event, affected assets, and actions taken. - Escalate confirmed security incidents and complex issues to Level 2/3 analysts or other relevant support teams, providing a detailed handover. - Follow established incident response procedures for handling standard security events. - Update and maintain security incident records in the ticketing system, ensuring all information is accurate and up to date. - Install application patches and signed software updates to enhance performance, functionality, and security standards. - Maintain the inventory of entire assets of Cyber Security solutions, update a database with respect to OS, Database, Webservers, Application details, and IP addresses pertaining to all Security Solutions under the mentioned scope. Qualification Required: - Education: BE/B-Tech/BCA (ONLY in Computer Science or IT Other Streams Not Accepted) OR Masters degree in CS/IT - Certification: Minimum 1 - CEH/ CCNA Sec/ PCNSA equivalent certification of respective OEM - Experience: 2+ years relevant experience (Note: Any additional details of the company were not provided in the job description)