Lead Consultant

Providence India

  • Hyderabad, Telangana
  • Temporary
  • Full-time
  • 5 days ago
About ProvidenceAt Providence, we are grounded in our goal to serve all as we engineer the future of healthcare. Providence Global Innovation Center, launched in Feb 2020, is the first development and innovation center of Providence outside the United States. Providence is a $26B non-profit organization and is one of the largest health systems in the United States. To read more,Why Us?
  • Best In-class Benefits
  • Inclusive Leadership
  • Challenging Work
  • Competitive Pay
  • Employee Friendly Policies
Location:
HyderabadHow is this team contributing to the vision of Providence?We, at Enterprise Services, the healthcare consulting and services arm of Providence India, help build technology solutions that modernize and simplify each step of the healthcare delivery process. And we do that by putting the patient and the provider at the center of everything we do. Using the most promising and practical ideas, combined with the experience and expertise from people from the healthcare industry, we are creating experiences that work for care facilities, their patients and move us ahead on our mission of “Health for a better world “.What will you be responsible for?
  • Participate and advance the Security Monitoring and Incident Response capability operating out of India.
  • Be part of Global Security Operations Center (SOC). Ensure seamless delivery of monitoring service & timely response on the incidents.
  • Conduct Cyber Incident Response Team (CIRT) activities, including forensic analysis.
  • Develop and implement operational processes and standards for security incident response and operational security tasks.
  • Collaborate with the other security teams to identify, investigate, and respond to major incidents.
  • Ensure that the incident response processes are kept up-to date and well-rehearsed during any real cyber-attacks or cyber drill.
  • Support Engineering efforts such as platform management upgrades and changes and tool integration.
  • Support other security operations functions as directed including development and testing of automation.
  • Report and optimize key Security Operations metrics.
  • Oversee emerging cyber threats, proactive modelling, threat validation.
What would your day look like?
  • Create and maintain SOC Playbooks, SOPs, and Training materials, manage shifts, onboarding, and training for SOC Engineers.
  • Perform all tasks required per shift including reporting, monitoring, and turnover logs.
  • Perform security log analysis during Information Security related events, identifying and reporting possible security breaches, incidents, and violations of security policies.
  • Process alerts, identify, investigate, and respond to security incidents adhering to Service Level Agreement (SLA). Utilize ticketing system and standard operating procedures effectively.
  • Escalate critical incidents that require management attention in a timely manner and provide timely updates.
  • Participate and create detailed incident reports. Contribute to lessons learned in collaboration with the appropriate team.
Who are we looking for?
  • 4-year University (Bachelor's) degree in Computer Science, Information Technology, or STEM fields, or equivalent experience.
  • 4+ years of relevant post-qualification experience, with at least three (3) years in Security Operations Center (SOC) environment
  • Hands on experience and knowledge to monitoring tools like - LogRhythm, DataDog, Sentinel, Splunk, ArcSight, QRadar etc.
  • Preferred experience in SOAR (Security Orchestration Automation Response) platform.
  • Experience with Scripting or programming (Shell scripting, Power Shell, Python, KQL etc.)
  • Working experience or knowledge of security monitoring in Cloud environment (Azure, Google Cloud, etc.).
  • Knowledge of threat centric frameworks - Cyber Kill Chain, MITRE ATT&CK® and NIST Cyber Security Framework.
  • Experience with writing/creation of formal documentation such as reports, slide decks, and architecture diagrams
  • Preferred SSCP, EC-Council CSA, CompTIA CYSA+, SANS GCIH / GSOC certification.
  • Technical skills in security operations, monitoring and event analysis, incident response and reporting
Providence’s vision to create ‘Health for a Better World’ aids us to provide a fair and equitable workplace for all in our employment, whether temporary, part-time or full time, and to promote individuality and diversity of thought and background, and acknowledge its role in the organization’s success. This makes us committed towards equal employment opportunities, regardless of race, religion or belief, color, ancestry, disability, marital status, gender, sexual orientation, age, nationality, ethnic origin, pregnancy, or related needs, mental or sensory disability, HIV Status, or any other category protected by applicable law. In furtherance to our mission in building a more inclusive and equitable environment, we shall, from time to time, undertake programs to assist, uplift and empower underrepresented groups including but not limited to Women, PWD (Persons with Disabilities), LGTBQ+ (Lesbian, Gay, Transgender, Bisexual or Queer), Veterans and others. We strive to address all forms of discrimination or harassment and provide a safe and confidential process to report any misconduct.Contact our also, read our .

Providence India