Senior Cyber Security Analyst - Emirati Talent

Senior Cyber Security Analyst - Emirati Talent

The primary function of this role is to monitor the ENOC environment on a 24x7 basis and conduct initial analysis for events to identify cyber security threats or attacks on ENOC IT / OT assets. In addition, perform first response assessment of cyber security incidents and escalate to the Senior Security Analyst for further investigation and response per approved policies, processes and procedures.

• Follow response procedures and other CIC related SOPs based on the incident impact analysis and predetermined response actions procedures.
• Acknowledge, analyse and validate vulnerabilities / incidents triggered from correlated events through SIEM or other security solutions.
• Acknowledge, analyse and validate incidents received through other reporting mechanisms such as email, phone calls, management directions, etc.
• Know and apply existing policies, standards, procedures, and guidelines to prevent unauthorized use, release, modification, or destruction of ENOC information assets.
• Understand security risks and controls.
• Undertake first stages of false positive and false negative analysis.
• Perform analysis of log files to collect contextual information to triage security events.
• Review and align priority, severity and classification of security incidents.
• Collect contextual information and pursue technical root cause analysis and attack method analysis.
• Analyze events / incidents to identify potential deficiencies in deployed controls that allowed the incident to materialize.
• Analyze reported cyber security events and incidents and recommend remediation and improvement actions.
• Provide functional support and content development / improvements for the SIEM and other security technologies used by CIC.
• Coordinate with internal and external stakeholders to handle cyber incidents as per approved SOPs and management directions.
• Participate in post-incident reviews and recommend improvement plans.
• Investigate, document, and report on information security issues and emerging trends.
• Be on-call 24 hours per day to respond to security emergencies.

• Degree: Bachelor’s degree in Computer Science, Engineering or Business field or equivalent; Diploma with additional relevant experience.
• Required professional certifications: CISSP, GCTI, GCFA, GNFA.

• 5+ years of information security or technology experience.
• 3+ years in relevant experience.
• Working experience in multiple industries (e.g., Energy, Utilities, Retail, Government) is preferable.
• Working experience in cyber security threats monitoring and handling.
• Exposure to OT security operation center experience is a plus.

• Seniority level: Mid-Senior level
• Employment type: Full-time
• Job function: Information Technology
• Industries: Oil and Gas