Cyber Security Analyst

The objective of our Security Operations Team is to defend these services from cyber-attack including internal and external threat vectors and protect the people and information assets of the organization.

Reporting to the Head of Information technology as a Cyber Security Analyst, you are part of a global team of Information Security specialists across the Enterprise.

You possess a very strong technical understanding of security operations practices and principles related to an online business applying them pragmatically in order to strike a balance between protecting our people, business and our clients, while allowing the organization to simply get on with doing what it does best.

Responsibilities

• Operate and monitor Intrusion Detection Systems (IDS), Security Incident and Event Management (SIEM), anti-malware and other cyber-security tools, logs and technologies, enabling rapid detection and response to malicious activities
• Recognize and respond to cyber-attacks and threats based on in-depth, proactive analysis of monitoring, network, application and system event data to identify potentially abnormal or anomalous system behaviour
• Manage the incident response process through to closure·
• Perform forensic analysis of IDS, logs, network traffic dumps and other cyber-security event sources, e.g. firewalls, asset inventories, vulnerability registers, through both manual and automated correlation practices
• Evaluate and utilize intelligence regarding new threats and vulnerabilities to ensure protective monitoring is capable of detecting potential new attacks (e.

g. through custom IDS or SIEM rules)

• Research and maintain a proficiency in current and emerging threats, vulnerabilities and security technology developments
• Create reports on cyber-security threats, attacks, incidents, and other indicators of cyber-security issues
• Assess the organization’s exposure to existing and new vulnerabilities and develop detection / mitigation strategy
• Participate in knowledge sharing with other analysts and develop solutions efficiently
• You must be able to work in a fast paced, agile environment with short timelines for deliverables. Whilst it is recognized not all security measures are impenetrable you will be measured on your ability to quickly identify, respond to and contain security threats.

Qualifications

• Minimum 4 years of experience in Cyber Security
• Hands-on experience analyzing high volumes of logs, network data and other attack artifacts
• Extensive experience with cybersecurity tools, e.g. SIEM, EDR / XDR
• Assist in evaluating, deploying, and maintaining security tools such as firewalls, intrusion detection / prevention systems, antivirus software, and encryption solutions
• Ability to oversee penetration testing and ethical hacking
• Familiarity with DLP technologies and strategies to prevent data leakage
• Demonstrable understanding of network traffic analysis techniques and ability to correlate multiple cyber-security event sources to provide a complete analysis of an intrusion and recommend mitigation
• Familiarity with the tools and techniques used by both ethical and malicious hackers, e.g. vulnerability scanners, exploit frameworks, etc.
• Understanding of IAM principles and practices, including role-based access control (RBAC) and privilege management
• Experience with Single Sign-On (SSO) and multi-factor authentication (MFA) technologies

Non-essential but an asset

• Programming / scripting skills desirable
• Certifications related to Cyber Security
• Degree in Computer Science or equivalent working experience preferred
• Flexible schedule with the ability to work occasional out of business hours
• Experience with and knowledge of WAF (Web Application firewall)
• Knowledge of cloud security controls and best practices
26 days ago