Job Description

Responsibilities:

• Perform security monitoring and incident response activities across the Group's global networks, leveraging a variety of tools and techniques
• Detect incidents through proactive "hunting" across security-relevant data sets
• Thoroughly document incident response analysis activities
• Develop new, repeatable methods for finding malicious activity across the Group's global networks
• Provide recommendations to enhance detection and protection capabilities
• Regularly present technical topics to technical and non-technical audiences
• Write high-quality incident reports for executives
• Develop and follow detailed operational processes and procedure s to appropriately analyze, escalate, and assist in the remediation of information security incidents
• Prioritize multiple high-priority tasks and formulate responses/re commendations to customers and team members in a fast-pace d environment
• Provide assistance to other security teams
• Continually develop new technical skills and push overall team capabilitie s forward
• Engage with and mentor other team members
• Perform other duties, as assigned

Requirements:

• Degree or Diploma in Information Technology, Engineering, Cybersecurity or related field
• Minimum 5 years of experience in Information Technology and 3 years in Information Security
• Hands-on experience in a Security Operations Center environment conducting network, host, or threat analysis
• Experience analyzing raw log files, particularly logs from network or host based security tools
• Experience analyzing packet captures
• Deep understanding of network defense principles, common attack vectors, and attacker techniques
• Advanced technical skills and the ability to develop a mastery of network and host security technologies
• Comfort with using the Linux command line
• Experience with at least 2 programming or scripting languages
• Experience with the following technologies or concepts:
  • SIEM or other security/log management platforms
  • Basic host-based forensics analysis
  • Basic static and dynamic malware analysis
  • Email analysis
  • Regular expressions
  • IDS/IPS
  • Firewalls
  • Virtualization
  • Common TCP and UDP protocols

If you are interested in this position, please click "Apply Now" and we will review your qualifications & reach out to you for further discussion & next steps. Only shortlisted candidates will be responded to, therefore if you do not receive a response within 14 days please accept this as notification that you have not been shortlisted. EA Licence No: 11C5502
Registration No: R1876903