Cyber Security Analyst

The Cyber Security Analyst will be responsible for protecting all of the company's hardware, software, and networks from cybercriminals. The analyst's primary role will be to understand the company IT infrastructure in detail in order to detect, evaluate and respond to threats that could potentially breach the network. The Cyber Security Analyst provides specific guidance and coaching to key security areas, e.g. key and encryption, secure software development. In this capacity, a cyber security analyst is part of the proactive work to help shape the tech delivery of the organization. The successful incumbent must possess excellent analytical, communication skills and be solution oriented.

RESPONSIBILITIES AND DUTIES

• Responsible for understanding the global threat landscape and acting on threat intelligence.
• Conduct cyber security incident response, following industry standards of containment, eradication, recovery and lessons learned.
• Manage containment and eradication of threats and remediation of environment during or after an incident, including identifying potential business impact and communication with stakeholders.
• Manage information security-related breaches.
• Document event analysis and write reports of incident investigations.
• Perform forensic analysis on threat indicators and intelligence insight and identify impact of vulnerabilities.
• Support the tech delivery in product and services teams with expert security knowledge relevant to a specific technology area or domain (e.g. Key & encryption, secure software development).
• Develop the required processes and tools to support the tech delivery teams.
• Define and develop security guardrails relevant to the tech area / domain.

The above responsibilities are indicative of the work required and should not be seen as an exhaustive list.

KNOWLEDGE AND SKILLS

• Security solutions (proxy, email gateway, IDS / IPS, FW, SIEM, SOAR, EDR etc.)
• Cloud, key and encryption management, SDLC concepts.
• IT and security architecture.
• Excellent English skills, both written and spoken.

QUALIFICATIONS AND EXPERIENCE

• BSc. in Computer Science, Computer Engineering, Mathematics, Information Security or any related field (or equivalent work experience).
• Minimum of 3 years experience in the field.
• Penetration testing (OWASP, MITRE etc.) experience.
• Cyber Security certifications (e.g. Security+, GCIA, GCIH, GREM, CISSP, CEH, GCFA).

DESIRED ATTRIBUTES AND BEHAVIOURAL COMPETENCIES

• Apply fundamental security concepts to cyber defense and understand business and risk to guide the cyber defense day to day operations.
• Manage cases with enterprise SIEM or Incident Management systems.
• Support network investigations and network monitoring in a SOC environment.
• Perform vulnerability assessment and penetration testing.

SPECIAL CONDITIONS

N / A

FUNCTIONAL RELATIONSHIPS

External : N / A

Internal : Development team, Tech Lead, CTO

PERFORMANCE CRITERIA

Timely delivery of agreed daily, weekly and monthly KPIs.

J-18808-Ljbffr