Cyber Security L2 Support Lead

Join Tata Consultancy Services, Asia Pacific and be part of an organization committed to sustainable development for our future. TCS follows the Tata group philosophy of building sustainable businesses that are rooted in the community and demonstrate care for the environment. Our unique values position us to combine a purpose-driven worldview with digital innovation, collaborating with customers, communities and governments to lead and shape innovative solutions for a sustainable future. TCS has been carbon neutral in its operations across 11 countries, 12 delivery centres and 18 offices in Asia Pacific since 2022. This is only the initial stage in TCS’ journey as we strive to achieve long-term net zero emissions by 2030.

Corporate sustainability is embedded in our triple-bottom-line, focusing on people, the planet, and our purpose. Our offices are designed with eco-friendly features that significantly reduce our carbon footprint and enhance energy efficiency. We actively champion green initiatives, such as promoting paperless operations, implementing energy-efficient practices, and fostering employee engagement in sustainability efforts. When you become part of the TCS family, you will play an essential role dedicated to innovation, excellence, and crafting a brighter, greener future together. Join us and be a part of our mission to drive sustainability through technology and talent at Tata Consultancy Services, APAC today

Purpose

This Cyber security L2 Support Lead manages 24*7 Security Operations (Monitoring, Triage, Alerting & incident Response), Phishing Incident Response, Security Solution Policy Management/Changes, Monitoring Service Request Approvals, Reporting, Documentation and SOPs and Security Solution Health check.

Key responsibilities and tasks

Key Responsibilities:
• Whitelisting the Domain /Email address
• Blacklisting the Domain /Email address
• Message Trace Analysis
• Releasing the emails from Policy Quarantine
• SPAM /Phishing Email Ticket analysis
• Adhoc Requests from Customer on Whitelisting/Blacklisting sender address or domain
• Drop/Quarantine External emails to recipients
• Monitoring and acknowledge tickets from the ticketing Tool
• Working on the issue,followup,ticket closure
• Daily Health Check on Microsoft Services
• Monthly Report on the emails delivered/received
• Allowing spoofed domains to send emails to the recipient
• Monitorting alerts triggered from Microsoft Defender related to quarantine release, Restricted user, Phish alert etc
• Creating Policy/Content filter depending on the user requirement
• Seeking Microsoft support in case required
• Work with email senders(Thirdparty) to resolve if legitimate emails are blocked due to DMARC policy
• Analyze Spoof Intelligence, Impersonation Insight to adjust EOP policies
• Weekly meeting with Customer on Email Security
• Share monthly reports to the stakeholders for visibility on user performance
• Create Custom EOP Policies
• Analyze and modify SPF/DKIM/DMARC records
• Prepare implementation plan. Review & implement accordingly
• Review of configurations, rules & policies periodically and provide recommendation
• Modify Inbound & Outbound routing configurations in Exchange as per the requirement
• Work with DNS teams to modify MX,SPF,DKIM,DMARC records

Qualifications / Experience
• 7+ Years Experience
• Endpoint security solution, NIPS, Vulnerability Scanning, Cloud security posture management, DLP, Email Security Solution expertize
• Education Qualification in relevant discipline
• Tertiary qualifications are essential
• Excellent verbal and written communication skills; expertise in setting and managing user expectations
• Strong teamwork and interpersonal skills at all management levels
• Airline Domain Knowledge Preferable

Other Benefits
• Double Pay
• Five Day work week
• Life Insurance
• Medical Insurance
• Dental Insurance
• Performance Bonus
• Education Allowance
• Flexible working hours