Information Security Analyst

Education

• Graduate of any IT or Engineering related courses (Computer Science, Computer Engineering, Physics, Mathematics, MIS, ECE, etc.)

Qualifications

• Experience in system administration of Unix like Operating Systems and/or Windows as well as system services or daemons
• Knowledgeable of TCPI/IP concepts and ability to analyze packet captures.
• Experience with various investigation tools (Volatility, Wireshark, etc)
• Experience with various network and system security controls (Firewalls, IPS, NAC, AntiDDOS)
• Deep knowledge of tools, techniques, and procedures of adversary (MITRE Framework, etc)

Duties and Responsibilities

• Respond to incidents by coordinating with internal and external departments to contain an incident. Timely update incident tickets and escalate accordingly.
• Advise and develop remediation plans.
• Work closely with the security engineering team to enhance detection and/or prevention capabilities.
• Produce incident reports.
• Produce post incident analysis, statistical information, and dash boards.
• Monitor and Update containment and eradication efforts.
• Keep abreast of global security trends from social media and RSS feeds.
• Mentor/Supervise Cyber Response Analyst/s.
• Ensure proper skills and capability are present among Cyber Response team.
• Provide input to proactive hunting teams on areas that need further monitoring and surveillance.
• Provide inputs to Security Engineering and Architecture teams for additional visibility and prevention configurations.
• Other tasks that may be assigned from time to time.