Mumbai, Bangalore, Delhi
23 hours ago
109 Applied
JOB ID:162282
Job Type
Full Time
Functional Area
IT
Industry
IT-Software/Software Services
Education
B.Tech/B.E-Computers Science
Experience Required
4 - 8 Yrs
Salary
15 - 18 Lakhs
Key Skills Required
cybersecurity
Other Skills Required
threat hunting
Languages
English,Hindi
Job Description
breach response, breach investigation
Minimum 3+ years of experience in performing Incident Response and/or Cyber Forensics
Roles & Responsibilities:
o Responsible for critical security incident/breach management life cycle across the enterprise which
includes, validating legitimacy of the incident, identification of possible source / incident
origin/patient Zero, performing event co-relation across various devices, gathering evidence, and
preparing final report
o Responsible for analysis of logs from various network devices, security tools, SIEM etc.to conclude
investigation process
o Perform memory forensics for investigating file less malware, sophisticated ransomware etc.
o Carry out incident forensic investigations as and when needed and ensure chain of custody
o Perform Bit stream Imaging/acquiring of the Digital Media during the process of Investigation
o Handle information breach viol... See More
breach response, breach investigation
Minimum 3+ years of experience in performing Incident Response and/or Cyber Forensics
Roles & Responsibilities:
o Responsible for critical security incident/breach management life cycle across the enterprise which
includes, validating legitimacy of the incident, identification of possible source / incident
origin/patient Zero, performing event co-relation across various devices, gathering evidence, and
preparing final report
o Responsible for analysis of logs from various network devices, security tools, SIEM etc.to conclude
investigation process
o Perform memory forensics for investigating file less malware, sophisticated ransomware etc.
o Carry out incident forensic investigations as and when needed and ensure chain of custody
o Perform Bit stream Imaging/acquiring of the Digital Media during the process of Investigation
o Handle information breach violations identified through Data Loss Prevention tool
o Work closely with SOC Analysts, Threat Intelligence and Threat Hunting team to enable a world-class
cyber defense team for KPMG
o Perform proactive analysis & reporting of cyber threats, data breaches and security anomalies
o Aid in and participate in daily, weekly, quarterly, and yearly production reporting for clients, partners,
and internal teams.
Required Skillset:
o Prior experience in handling critical Information security incidents/breach
o Able to decipher attack motivations and techniques by correlating threat data from various sources
to complete a comprehensive picture of potential cyber-attacks
o Proficient with MITRE ATT&CK framework and TTPs related to various adversary groups
o Should have experience in any of EDR tools - MDE, Carbon Black, CrowdStrike, FireEye HX
o Should be able to use Encase, Autopsy, FTK Access Data, and other forensic tools for acquiring and
analysis of the data from the various Storage devices
o Exposure in minimum one SIEM tools - ArcSight, Splunk, Sentinel, QRadar
o Should be able to perform basic malware analysisThreat Hunting
Roles & Responsibilities:
▪ Actively assess network and endpoint events to detect anomalous activity and develop mitigation
strategies to prevent cyber threats
▪ Proactively detect, isolate, and neutralize advanced threats that evade existing security solutions by
utilizing existing resources and security solutions/tools
▪ Leverage internal and external resources to research threats, vulnerabilities, and intelligence on
various attackers and attack infrastructure
▪ Conduct threat hunting scenarios basis behavior analysis, cyber threat intelligence, and hypothesis
driven approach
▪ Perform regular hunts post analyzing TTPs adopted by popular threat actor groups
▪ Remain updated about latest threats, attack vectors and use the knowledge to develop detection rule
and hunt scenarios proactively under stringent timeline
▪ Should be able to maintain/develop sandbox-based solution to perform basic malware analysis
▪ Aid in and participate in daily, weekly, quarterly, and yearly production reporting for clients, partners, and
internal teams.
Required Skillset:
▪ Strong understanding of cyber kill chain, MITRE ATT&CKframework
▪ Deep understanding of network protocols, operating systems, AD Security, DNS Security, and
adversary tactics
▪ Must possess deep knowledge and understanding of Microsoft Event IDs required for designing
various hunting queries especially process related events
▪ Basic understanding of Query Logic used in various SIEMs (Splunk, Sentinel, QRadar) used for running
hunt queries
▪ Should be able to analyze network packets and log data from various devices
▪ Should have working knowledge of Python to install, run and test various Python based open source
Git Projects/tools etc.
▪ Basic understanding of malware analysis
▪ Must be proficient in writing detailed threat reports
▪ Preferred experience in running/managing any BAS/Purple tool solutionThreat Intelligence
Roles & Responsibilities:
o Use various intelligence collection and reporting tools and frameworks to create customized threat
Intelligence reports
o Publish, present, and explain the reports to relevant stakeholders
o Collect, process, catalog, and document information using an all-source approach and various technical
and human means on cyber-security topics as required based on defined intelligence requirements.
o Development of various tactical and strategic intelligence products including advisories and threat
landscape reports
o Maintain a deep understanding of threat actor groups, campaigns and tactics, techniques, and procedures
o Act as an escalation point for CTI analysis and investigation-related events
o Work with members of various teams, such as incident response and security monitoring, to carry out joint
investigations or other threat management functions
o Identifies gaps in available intelligence information and engages with leadership on strategies to meet
intelligence requirements through Intelligence collection processes.
o Aid in and participate in daily, weekly, quarterly, and yearly production reporting for clients, partners, and
internal teams.
Required Skillset:
o Should have hands on experience in various OSINT tools
o Should be able to perform with dark and deep web scans
o Should have experience in deployment/management of various tools pertaining o Threat Intelligence
including MISP, Recorded Future etc.
o Should have basic understanding vulnerability scanning solutions
o Must possess intermediate level of Cyber Security threats and various attack vectors See Less
Shift TimingsMake your mark by unveiling your true potential, at KPMG Global Services!
At KGS, we believe your insights can create opportunities for you and contribute to a better future. Do work that matters, supported by a community that values difference and cares about you. Gain learning that’ll last you a lifetime and be recognized for the impact you make. Find opportunity everywhere with us!
KGS is a solution-oriented organization with a continuous focus on enhancing skills and talent and rapidly accelerating your transformation. We see a world of opportunity — one where enterprises and individuals have the insights they need to build trust, transform and succeed, through vastly diverse contributors.
We are a group of dedicated problem solvers connected by a common cause, experts tailoring data-driven solutions and shaping intelligent systems and teams sparking outcomes. With us, you'll have the opportunity to discover who you are, pursue your goals and benefit from the rich and
... See MoreMake your mark by unveiling your true potential, at KPMG Global Services!
At KGS, we believe your insights can create opportunities for you and contribute to a better future. Do work that matters, supported by a community that values difference and cares about you. Gain learning that’ll last you a lifetime and be recognized for the impact you make. Find opportunity everywhere with us!
KGS is a solution-oriented organization with a continuous focus on enhancing skills and talent and rapidly accelerating your transformation. We see a world of opportunity — one where enterprises and individuals have the insights they need to build trust, transform and succeed, through vastly diverse contributors.
We are a group of dedicated problem solvers connected by a common cause, experts tailoring data-driven solutions and shaping intelligent systems and teams sparking outcomes. With us, you'll have the opportunity to discover who you are, pursue your goals and benefit from the rich and diverse, collective global knowledge base offered by KPMG. See Less
