Analyst II

2 - 3 Years

1 Opening

Hyderabad

Role Proficiency:

Under guidance and support from the supervisors carry out cross domain tasks assigned (including internal and external audits customer assurance awareness training VAPT Red Teaming etc.) with better knowledge and competence (Maximum supervision)

Outcomes:

• Handle the assigned tasks from the allocated domain with guidance from the leads. (Domain Examples: BCMS Risk assessment Incident management HITRUST SOC Customer Assurance Awareness activities Data Privacy VAPT Red Teaming etc.)

• Assist leads in internal/external audits to ensure compliance with ISO 27001/ISO 22301/ISO 27701 requirement as well as business specific requirements.

• Responsible for the internal audits/security assessments report preparation and follow up for closure of respective audit reports.

• Understand and Evaluate IT Controls and assist in Risk Assessment

• Tracking and following up for the Risk closure.

• Learn and understand existing and emerging management practices and link with security control points with guidance from the leads.

• Handle preparatory sessions and evidence collections from all applicable teams as part of any external audits with minimum guidance from the leads.

• Comfortable with CTFs or Bug Bounty activities.

• Assist the leads in customer discussions to clearly identify/document the requirement.

• Perform security assessments and assist in preparing comprehensive technical reports for the assessments within stipulated time.

• Involve in the automation activities within the team.

• Contribute to infosec awareness activities with support from leads.

• Assist in establishing a tracking and reporting strategy.

Measures of Outcomes:

• Number of internal audits attended or security assessments been a part of

• Adherence to applicable SLAs

• Number of areas of responsibility on cross domains.

• Less than two stake holder escalations

• More than two appreciation from the stakeholders/leads.

Outputs Expected:

Documentation:

• Policy and Procedure amendments
  
  Awareness training materials
  
  Presentations decks for internal/ external discussions
  
  Audit / Security Assessment reports

Process:

• Internal ISMS audits – assisting in audits
  
  prepare audit reports and follow-up for the audit report closure

• Compliance Audits - Assisting certification audits
  
  conduct preparatory session and evidence collection

• Infosec activities – training material
  
  conducting sessions
  
  co-ordinate with other teams for trainings conducting

• Customer Assurance – assist in evidence collection

• Vulnerability Assessment and Penetration Testing/Red Teaming Activities

• CM activities

• Assisting the leads in executing other location responsibilities.

Training or certifications:

• 5 per year (1 certification and minimum 4 of UST trainings related to Information/Cyber Security domains)

Skill Examples:

• Ability to understand prioritize and escalate tasks to resolve issues quickly and make decisions.

• Strong Excel and Dashboard skills

• Good Presentation and communication skills

• Excellent verbal and written communication skills required including the ability to effectively communicate in both highly technical and non-technical environments.

• Detail oriented customer oriented result delivery oriented analytical thinking

• Good at working in a team and with other teams

• A great problem solver with the knack of coaching others to do the same

• Good time management

• Self-motivated and enthusiastic

• A desire for continuous learning and skill development.

Knowledge Examples:

• Should have a fair understanding of concepts of Information Security Business Continuity Data Privacy VAPT Red Teaming and various compliance standards.

• Knowledge on compliance standards (ISO 27001/ISO 22301/ISO 27701)

• Knowledge of the security controls Information/Cyber Security concepts etc.
• Knowledge on standard SDLC and project management life cycles.
• Knowledge on the operations of various functional units like HR REFM IT Finance etc. and units involved in IT Asset lifecycle management.
• Knowledge on security testing standards like OWASP Top
• Good on Linux commands.
• Good on Scripting Languages like Shell Script Python etc.
• Development and Testing knowledge would an added advantage.
• Hands on experience in RSA Archer Burp Suite Nessus Nmap Genymotion Postman MobSF Drozer etc.
• Good to have Certifications like CEH ECSS CND OSWE etc.
• Specialize in any one domain (Web Network API or Mobile) Security Assessment with false positive identification of automated scan results.

Additional Comments:

Job Description – Associate Engineer (Google SecOps – Engineering Support) Location: Hyderabad (On-Premises) Experience: 0–1 Years Job Type: Full-Time Role Summary We are hiring an Associate Engineer to support L1 engineering activities for Google SecOps (Chronicle SIEM & Google SOAR). This role involves assisting senior engineers with log onboarding, integration validation, ingestion health checks and documentation support. Key Responsibilities Perform daily health checks on SIEM/SOAR data pipelines, integrations, and dashboards. Assist in SOAR connector testing, network validation, and workflow documentation. Troubleshoot basic ingestion or connectivity issues and escalate to senior engineers when required. Maintain and update engineering documentation, including onboarding checklists, SOPs, and runbooks. Prepare regular reports on log source status, ingestion health, integration success, and configuration changes. Collaborate with senior engineers to support implementation, enhancements, and project activities. Required Skills Basic understanding of cybersecurity tools such as SIEM, SOAR, EDR, etc. Familiarity with Google cloud . Knowledge of common security logs: Windows, firewall, proxy, DNS, EDR, and cloud logs. Strong networking fundamentals (TCP/IP, DNS, DHCP, ports & protocols, NAT). Good documentation, reporting, and communication skills. Good-to-Have Skills Basic scripting knowledge (Python, PowerShell, Bash). Exposure to cloud platforms (GCP preferred; AWS/Azure optional). Understanding of APIs, authentication mechanisms, and service accounts. Awareness of other SIEM platforms (Splunk, QRadar, Elastic, LogRhythm, Sumo Logic). Education Bachelor's degree in Computer Science, Information Technology, Cybersecurity, ECE, or a related field. Foundational cybersecurity or Google Cloud certifications are a plus. What We Offer Hands-on experience with Google SecOps SIEM & SOAR engineering. Opportunity to grow into SIEM Engineer, SOAR Engineer, or Cloud Security Engineer roles. A learning-focused environment with mentorship from experienced security engineers.

CyberSecurity,Google Secops,SIEM PLatform

UST is a global digital transformation solutions provider. For more than 20 years, UST has worked side by side with the world's best companies to make a real impact through transformation. Powered by technology, inspired by people and led by purpose, UST partners with their clients from design to operation. With deep domain expertise and a future-proof philosophy, UST embeds innovation and agility into their clients' organizations. With over 30,000 employees in 30 countries, UST builds for boundless impact—touching billions of lives in the process.