Associate Security Consultant

Job Summary

JD for Associate Security Consultant Key technological area: Firewalls and IPS Management Anti DDoS Management WAF (Web Application Firewall Management) Web Gateway Management Email Gateway Management Endpoint Protection Management (Anti Virus Management) Key Responsibilities: Firewall & IPS Management: Design, configure, and deploy firewalls and IPS/IDS from vendors such as Huawei, Cisco, Palo Alto, Fortinet, or Check Point to meet organizational security requirements proficiency. Experience with network security protocols, including VPN, IPSec, SSL, and TLS. Ensure firewall rules are optimized to balance security and performance. Anti DDoS Management: Deploy and manage Anti DDoS solutions e.g. Radware, such as scrubbing centers, traffic filtering systems, and rate limiting techniques. Provide technical expertise in configuring firewalls, intrusion prevention systems (IPS), and web application firewalls (WAF) to defend against DDoS threats. Develop strategies to mitigate DDoS attacks in real time while minimizing disruption to legitimate users. Strong understanding of DDoS attack methods, including volumetric, protocol, and application layer attacks. WAF Management: Design, implement, and optimize Radware or F5 WAF configurations to meet organization security needs. Create and enforce security policies tailored to the organization's web applications. Ensure that the WAF does not negatively impact the performance or availability of web applications. Familiarity with OWASP Top Ten vulnerabilities and mitigation techniques. Capability to troubleshoot issues with WAF systems and resolve complex security challenges. Web Gateway Management: Configure, manage, and optimize McAfee Web Gateway to ensure secure web traffic and enforce organization wide security policies. Implement URL filtering, content filtering, and SSL inspection for safe browsing and compliance with regulatory standards. Solid knowledge of web protocols (HTTP, HTTPS, FTP) and hands on experience with SSL/TLS decryption. Email Gateway Management: Experience with on premises email security solutions like Trend Micro IMSVA, DDEI etc. Familiarity with cybersecurity frameworks and protocols, including DMARC, DKIM, and SPF. Configure, monitor, and maintain email gateways to protect against cyber threats, such as phishing, malware, and spam. Develop and enforce email security policies, including encryption standards and data loss prevention (DLP) measures. Endpoint Protection: Implement and manage endpoint protection solutions using ApexOne and Deep Security Manager, including antivirus software, intrusion detection systems, and endpoint detection and response (EDR) tools. Monitor endpoints to identify suspicious activities, analyze logs, and respond to flagged incidents in real time. Design and enforce policies for endpoint usage, including access controls, device compliance, and secure configurations. Capable of troubleshooting endpoint related issues and implementing swift solutions during crises. Patch Management, forensic Analysis and best practices: Perform regular system updates, patches, and upgrades to maintain peak performance and security. Advise on best practices for prevention of security threats and contribute to the enhancement of the organization's security posture. Generate and analyze reports on attack trends, blocked threats, and system performance from respective security tools. Generate detailed reports on security metrics, incident resolutions, and ongoing improvements. Analyze network traffic patterns to detect and mitigate potential th