Security Analyst

ENOC LUBRICANTS AND GREASE MANUFACTURING PLANT LLC

The primary function of this role is to monitor the ENOC environment on a 24/7 basis and conduct initial analysis of events to identify any cybersecurity threats or attacks on ENOC IT/OT assets. Additionally, the role involves performing first response assessments of cybersecurity incidents and escalating them to the Senior Security Analyst for further investigation and response, following approved policies, processes, and procedures.

1. Operational
2. Follow response procedures and other CIC-related SOPs based on incident impact analysis and predetermined response action procedures.
3. Acknowledge, analyze, and validate vulnerabilities/incidents triggered from correlated events through SIEM or other security solutions.
4. Acknowledge, analyze, and validate incidents received through other reporting mechanisms such as email, phone calls, or management directions.
5. Understand policies, standards, procedures, and guidelines to prevent unauthorized use, release, modification, or destruction of ENOC information assets.
6. Gain knowledge of security risks and controls.
7. Undertake initial false positive and false negative analysis.
8. Analyze log files to gather contextual information for triaging security events.
9. Review and prioritize security incidents based on severity and impact.
10. Collect contextual information and perform technical root cause and attack method analyses.
11. Analyze events/incidents to identify control deficiencies that led to the incident.
12. Recommend remediation and improvement actions based on analysis.
13. Support and develop content for SIEM and other security technologies used by CIC.
14. Coordinate with internal and external stakeholders to handle cyber incidents per SOPs and management directives.
15. Participate in post-incident reviews and suggest improvement plans.
16. Investigate, document, and report on information security issues and emerging trends.
17. Be on-call 24 hours a day to respond to security emergencies or related problems.
18. Work on shift schedules, including weekends.

Experience & Education

• Bachelor's degree in Computer Science, Engineering, Business, or equivalent; Diploma with relevant experience is also acceptable.
• Professional certifications such as CISSP, GCTI, GCFA, GNFA are required.
• Minimum 5+ years of experience in information security or technology.
• At least 3+ years of relevant experience.
• Experience in multiple industries (Energy, Utilities, Retail, Government) is preferred.
• Experience in cybersecurity threat monitoring and handling.
• OT security operations center experience is a plus.

Disclaimer: Naukrigulf.com is a platform connecting jobseekers and employers. Applicants should verify the legitimacy of employers independently. We do not endorse requests for money payments or sharing personal/bank details. For security advice, visit our website. Report any fraud or malpractice to abuse@naukrigulf.com.