Are you a passionately curious individual who possesses a steady and unshakable eye for detail? Are you not afraid of searching for a needle in the stack of hay? Do you think you have the skillset, knowledge, to be the first line of defense between cyber adversaries and the organization? Do you believe in working for a mission to protect your organization 365*24*7? If you are in love with the tools and technology that help you to solve this daunting challenge, then we are looking for you.
Who we are?
Payatu is a GPTW certified company where we strive to create a culture of excellence, growth and innovation that empowers our employees to reach new heights in their careers. We are young and passionate folks driven by the power of the latest and innovative technologies in IoT, AI/ML, Blockchain, and many other advanced technologies. We are on the mission of making Cyberworld safe for every organization, product, and individual.
What we look for outside work parameters?
Your expertise is your primary qualification, not your degree or certification.
Your publicly known contributions are your credentials.
Your write-up and blogs reflect your interests and ethics.
You are a perfect technical fit if:
At least 2 to 5 years of experience handling SIEM tools (Splunk), Incident Response.
Knowledge and Hands-on experience on Security appliances like (IPS, Proxy, XDR/EDR, Email Security Gateway, Cloud Access Security Broker).
Experience in Security Orchestration and Automation.
Should have good knowledge of one or more programming/scripting languages like Python, Go, PowerShell, Bash.
Have good experience in handling IT Security incidents, phishing analysis, triaging and analyzing malware, developing and fine-tuning use cases.
Experience in host and network forensics.
Experience in analyzing logs and should have hands-on experience in Windows and Linux.
Should have experience in working on and monitoring cloud environment [ AWS & Azure].
Should have experience on Entra ID, Microsoft Defender, Sentinel, KQL.
You Have All Our Desired Qualities, if:
You like scripting and automating stuff.
You like writing tools.
You have excellent written and verbal communication skills and the ability to express your thoughts clearly.
You have the skill to articulate and present technical things in business language.
You can work independently as well as within a team.
You have strong problem solving, troubleshooting, and analysis skills.
You are passionate about your area of expertise and self-driven.
You are comfortable working in a dynamic and fast-paced work environment.
You are Self-driven, proactive, hardworking, team-player.
You are working on something on your own in your field apart from official work.
Your everyday work will look like:
Automation & Orchestration: Automate mundane and repetitive tasks to improve existing workflows and improve response times.
Engineering: Create custom solutions for various Incident Response activities as per business requirement.
Incident Response activities: Identity, investigate and respond to potential security incidents to minimize the operational and organizational impact.
Malware Analysis: Analyse and triage the malware found on the system.
Forensics: Perform forensic analysis on system and network artifacts to identify indicators of compromise.
Identify Gaps: Investigate and document gaps in controls, event data, and work with internal teams to resolve.
Process Improvement: Execute, develop, and document Incident Handling Guides and processes.