Specialist - Cyber Defense Centre

Synechron

Job Summary

Synechron is seeking a skilled and dedicated Specialist - Cyber Defense Centre to strengthen our cybersecurity defenses. This pivotal role involves supporting advanced cyber defense operations through proactive threat hunting, incident response, and security analytics. The Specialist will collaborate closely with SOC analysts, cybersecurity teams, and IT operations teams to detect, investigate, contain, and remediate cyber threats. The overarching goal is to enhance the organization s security posture, improve detection capabilities, and ensure rapid, effective responses to cyber incidents, thus safeguarding our digital assets and business continuity.

Software Requirements

Required Software Skills:

• SIEM Platforms: Splunk, IBM QRadar, or Azure Sentinel (expertise in configuration and operational management)
• Endpoint Detection and Response (EDR/NDR): Experience with platforms such as CrowdStrike, Microsoft Defender, or Palo Alto Cortex XDR
• Security Orchestration, Automation, and Response (SOAR): Familiarity with Palo Alto Cortex XSOAR,Splunk SOAR, or similar tools
• Threat Intelligence Platforms and feeds
• Log analysis and network forensic tools

Preferred Software Skills:

• Cloud Security Tools for AWS, Azure, GCP
• Threat hunting frameworks and scripting (Python, PowerShell)
• Digital investigation tools

Overall Responsibilities

• Conduct proactive threat hunting activities to identify hidden or emerging cyber threats using advanced analytics and intelligence sources.
• Support and lead incident response efforts by investigating security incidents, coordinating containment, eradication, and recovery actions.
• Monitor, tune, and enhance security tools such as SIEM, EDR, NDR, and SOAR to increase detection efficacy.
• Analyze security data to identify trends, generate detailed reports, and develop dashboards for leadership insights.
• Collaborate with cross-functional teams to improve detection rules, develop incident response playbooks, and conduct cyber drills.
• Validate security controls regularly to ensure readiness and effectiveness.
• Maintain comprehensive documentation of investigations, findings, and lessons learned for continuous improvement.

Technical Skills (By Category)

• Programming Languages:
• Required: Scripting skills in Python or PowerShell
• Preferred: Knowledge of additional languages such as Bash or Perl
• Databases/Data Management:
• Experience with log management and analysis of large datasets
• Cloud Technologies:
• Experience with cloud environment security (AWS, Azure, GCP) is an advantage
• Frameworks and Libraries:
• Familiarity with MITRE ATT&CK framework and TTPs
• Development Tools and Methodologies:
• Familiar with security automation, incident response frameworks, and Agile methodologies
• Security Protocols & Standards:
• Knowledge of TCP/IP, SSL/TLS, VPNs, Firewalls, and encryption protocols