SOC 2 - Security Analyst

Role Description Junior Security Analyst

Outline of the Role:

We are looking to hire a dynamic Junior Security Analyst to monitor technology systems for security incidents review incident data and support the development of risk mitigation strategies and more. The Junior-level Security Analyst is expected to have 2-5 years of experience.

A day in the life:

The Cyber Security Analyst will help the team to perform Security Operations Center (SOC) duties which include incident response malware analysis and monitoring. This role will work with the team to implement processes and practices designed to protect networks devices and data from malicious attack damage or unauthorized access.

• Triages alerts/incidents and performs deep analysis; correlates with threat intelligence tools tactics and procedures (TTP) in indicators of compromise (IOCs) to identify the threat actor nature of the attack and systems or data affected.

• Prioritizes and triages alerts or issues to determine whether a real security incident is taking place and escalate incidents to Tier 3 if remediation cannot be closed within SLA time.

• Performs analysis triage and remediation of low/medium priority alerts.

• Analyzing logs network traffic and other data sources to identify the source of incidents.

• Record identified vulnerabilities create remediation tickets and track their status.

• Build internal scripts tools and automation processes to enhance detection and response capabilities.

• Adjusting security tools and processes e.g. EDR alerting modifications updating detection rules conditions etc.

Qualifications Skills Experience and Personal Requirements:

• Bachelors in: Computer Science Information Security Cybersecurity or a related degree.

• 2-4 year experience in one or more areas: Security Operations Incident Response

• Strong security concepts of threat categories (such as malware phishing attacks Defense-in-Depth MITRE ATT&CK framework etc.)

• Strong knowledge of M365 Security tools Azure AWS GCP

• Working experiences to security tools such as SIEM (Sentinel Splunk Elastic etc.) EDR firewalls IDS/IPS anti-spam content management server and network device hardening etc.

• Strong knowledge of Windows Linux and/or Mac OS and comfortable with looking at understanding and investigating Security Event logs.

• Good knowledge of networking protocols (SMTP HTTP HTTPS FTP DNS DHCP etc).

• Experiences of any query language and scripting language

• SharePoint Excel JIRA and/or Microsoft Office skills

• Experience in using security orchestration automation and response tools

• Experience with query languages and scripting languages

• Experience in using security orchestration automation and response tools

Additional Manager Comments:

• Acknowledges the presence of choice in every moment and takes personal responsibility for their life.

• Possesses an entrepreneurial spirit and continuously innovates to achieve great results.

• Communicates with honesty and kindness and creates the space for others to do the same.

• Leads with courage knowing the possibility of greatness is bigger than the fear of failure.

• Fosters connection by putting people first and building trusting relationships.

• Integrates fun and joy as a way of being and working aka doesnt take themselves too seriously.

Required Skills : Network Security

Basic Qualification :

Additional Skills :

This is a high PRIORITY requisition. This is a PROACTIVE requisition

Background Check : No

Drug Screen : No