Security Analyst

As part of a network expansion we are looking for a 24x7 Security Analyst (Incident Handler) who will conduct vulnerability assessments and monitor systems networks databases and Webhosted services for potential system breaches on behalf of a leading SATCOMS company.

Key responsibilities of the position:

• Act as a firstline security event analyst monitoring the Security Information and Event Management (SIEM) System. Monitor the alarm console; provide an initial analysis of logs and network traffic; and make security event determinations on alarm severity escalation and response
• Report investigate and resolve security incidents. Educate and communicate security requirements and procedures to all users and new employees
• Deliver first level investigation and remediation activities as a member of the Security Incident Response Team. Participate in Security Incident Response Team (SIRT) events
• Conduct research and assessments of security events; provide analysis of firewall IDS antivirus and other network sensor produced events; present findings as input to SIRT
• Create and update security event investigation notes conduct shift change reports on open cases and maintain case data in the Incident Response Management platform
• Document information security operations policies processes and procedures.
• Participate in a Compliance/Vulnerability Assessment (VA) Scanning Capability. Following a documented process for routine scanning of the business infrastructure and network elements.
• Develop mitigation and remediation plans as a result of the vulnerability assessment findings
• Monitor threat and vulnerability news services for any relevant information that may impact installed infrastructure. Analyse reports to understand threat campaign(s) techniques lateral movements and extract indicators of compromise (IOCs)
• Recommend changes to enhance systems security and prevent unauthorised access. Research security trends new methods and techniques used in unauthorised access of data in order to preemptively eliminate the possibility of a system breach. Ensure compliance with regulations and privacy laws
• The post will require rotating 24X7 shift work to include daytime night time and weekend work

Essential Knowledge and Skills:

• Ability to perform rotating shift work
• A University degree level education or equivalent in Information Security Forensics or Computer Science; related experience and/or training in the field of IT security monitoring and analysis cyber threat analysis and vulnerability analysis
• Understanding of performing 1st level analysis and interpretation of information from SOC systems; incident identification/analysis escalation procedures and reduction of falsepositives
• SANS Global Information Assurance Certification (GIAC) SANS Certified Incident Handler (GCIH) SANS GIAC Certified Intrusion Analyst (GCIA) or equivalent certification would be advantageous
• Intermediate knowledge of Information Security fundamentals technologies and design principals
• Understanding or proven experience in securing Windows Linux Oracle and VM platforms
• Understanding or proven experience of QRadar or similar Security Information and Event Management (SIEM) tools for analysing network and security incidents
• Experience in using vulnerability Assessment (VA) scanners to identify network and platform

Required Experience:

IC