Cyber Security Analyst

About the job Cyber Security Analyst
About the job Cyber Security Analyst
The Cyber Security Analyst will be responsible for protecting all of the company's hardware, software, and networks from cybercriminals. The analyst's primary role will be to understand the company IT infrastructure in detail in order to detect, evaluate and respond to threats that could potentially breach the network. The Cyber Security Analyst provides specific guidance and coaching to key security areas, e.g. key and encryption, secure software development. In this capacity, a cyber security analyst is part of the proactive work to help shape the tech delivery of the organization. The successful incumbent must possess excellent analytical, communication skills and be solution oriented.

RESPONSIBILITIES AND DUTIES

Responsible for understanding the global threat landscape and acting on threat intelligence.

Conduct cyber security incident response, following industry standards of containment, eradication, recovery and lessons learned.

Manage containment and eradication of threats and remediation of environment during or after an incident, including identifying potential business impact and communication with stakeholders

Manage information security-related breaches

Document event analysis and write reports of incident investigations.

Perform forensic analysis on threat indicators and intelligence insight and identify impact of vulnerabilities

Support the tech delivery in product and services teams with expert security knowledge relevant to a specific technology area or domain (e.g. Key & encryption, secure software development)

Develop the required processes and tools to support the tech delivery teams

Define and develop security guardrails relevant to the tech area/domain

The above responsibilities are indicative of the work required and should not be seen as an exhaustive list.

KNOWLEDGE AND SKILLS

Security solutions (proxy, email gateway, IDS/IPS, FW, SIEM, SOAR, EDR etc.)

Cloud, key and encryption management, SDLC concepts

IT and security architecture

Excellent English skills, both written and spoken.

QUALIFICATIONS AND EXPERIENCE

BSc. in Computer Science, Computer Engineering, Mathematics, Information Security or any related field (or equivalent work experience).

Minimum of 3 years experience in the field

Penetration testing (OWASP, MITRE etc.) experience

Cyber Security certifications (e.g. Security+, GCIA, GCIH, GREM, CISSP, CEH, GCFA)

DESIRED ATTRIBUTES AND BEHAVIOURAL COMPETENCIES

Apply fundamental security concepts to cyber defense and understand business and risk to guide the cyber defense day to day operations.

Manage cases with enterprise SIEM or Incident Management systems

Support network investigations and network monitoring in a SOC environment.

Perform vulnerability assessment and penetration testing

SPECIAL CONDITIONS

N/A

FUNCTIONAL RELATIONSHIPS

External: N/A

Internal: Development team, Tech Lead, CTO

PERFORMANCE CRITERIA

Timely delivery of agreed daily, weekly and monthly KPIs