About the job Cyber Security Analyst -
The Cyber Security Analyst will be responsible for protecting all of the companys hardware, software, and networks from cybercriminals. The analyst's primary role will be to understand the company IT infrastructure in detail in order to detect, evaluate and respond to threats that could potentially breach the network. The Cyber Security Analyst provides specific guidance and coaching to key security areas, e.g. key and encryption, secure software development. In this capacity, a cyber security analyst is part of the proactive work to help shape the tech delivery of the organization.The successful incumbent must possess excellent analytical, communication skills and be solution oriented.
RESPONSIBILITIES AND DUTIES
Responsible for understanding the global threat landscape and acting on threat intelligence.
Conduct cyber security incident response, following industry standards of containment, eradication, recovery and lessons learned.
Manage containment and eradication of threats and remediation of environment during or after an incident, including identifying potential business impact and communication with stakeholders
Manage information security-related breaches
Document event analysis and write reports of incident investigations.
Perform forensic analysis on threat indicators and intelligence insight and identify impact of vulnerabilities
Support the tech delivery in product and services teams with expert security knowledge relevant to a specific technology area or domain (e.g. Key & encryption, secure software development)
Develop the required processes and tools to support the tech delivery teams
Define and develop security guardrails relevant to the tech area/domain
The above responsibilities are indicative of the work required and should not be seen as an exhaustive list.
KNOWLEDGE AND SKILLS
Security solutions (proxy, email gateway, IDS/IPS, FW, SIEM, SOAR, EDR etc.)
Cloud, key and encryption management, SDLC concepts
IT and security architecture
Excellent English skills, both written and spoken.
QUALIFICATIONS AND EXPERIENCE
BSc. in Computer Science, Computer Engineering, Mathematics, Information Security or any related field (or equivalent work experience).
Minimum of 3 years experience in the field
Penetration testing (OWASP, MITRE etc.) experience
Cyber Security certifications (e.g. Security+, GCIA, GCIH, GREM, CISSP, CEH, GCFA)
DESIRED ATTRIBUTES AND BEHAVIOURAL COMPETENCIES
Apply fundamental security concepts to cyber defense and understand business and risk to guide the cyber defense day to day operations.
Manage cases with enterprise SIEM or Incident Management systems
Support network investigations and network monitoring in a SOC environment.
Perform vulnerability assessment and penetration testing
SPECIAL CONDITIONS
N/A
FUNCTIONAL RELATIONSHIPS
External: N/A
Internal: Development team, Tech Lead, CTO
PERFORMANCE CRITERIA
Timely delivery of agreed daily, weekly and monthly KPIs