Requires knowledge and experience in Security Monitoring, Event Analysis, Forensics and Incident Response
Incident Response, Threat Intelligent, Cyber Security Forensics
Cyber Threat and Intelligence Analyst proactively detects malicious behavior using a unique blend of device logs and threat intelligence feeds from multiple commercial and open source feeds.
Responsible for CSOC's cyber threat information and intelligence collection analysis, production, and dissemination of finished intelligence products to CSOC teams and overall executive decision makers.
The Threat and Intel Analyst coordinates with external peer groups and information security circles over cyber threats and on the development of global cyber policy to address events ranging from intrusions, malware, DDoS, unauthorized access, insider attacks, and loss of proprietary information.
Requires knowledge and experience in Security Monitoring, Event Analysis, Forensics and Incident Response.
This role is expected to have a strong continuous learning over time.
Builds knowledge of the organization, processes, and customers
Solves a range of complex problems
Analyzes possible solutions using standard procedures
Key Responsibilities - Cyber Threat Monitoring
Responsible to monitor the incident tickets and manage these tickets in a timely manner according to appropriate severities.
Ensure tickets are managed appropriately and closed within stipulated service level
Ensure requests are closed with sufficient quality with full incident lifecycle
Responsible for Level 2 / Level 3 Alert Reviewing and Investigation, when Security Analysts identify high-risk indicators of compromise or attack
Record, update, maintain and follow-up on escalated security events and / or incidents
Design use cases that cover native model and anomaly (machine learning model)
Record and Manage Knowledgebase on all incident handling performed in CSOC covering source of threat, the source of logs, rating of criticality, monitoring mechanism, alerting mechanism, escalation method, recording, and reporting mechanism.
Coordinate with the support of the Incident Response Leader and Security Analysts, any escalation of IT Security events and / or incidents, to Local Business Units and Regional counterparts Cyber Threat Intel Monitoring
The Threat and Intel Analyst is responsible for CSOC's cyber threat information and intelligence collection analysis, production, and dissemination of finished intelligence products to CSOC teams and overall executive decision makers.
Real-time monitoring of third party security feeds, forums and mailing lists to gather information on vulnerabilities and exploits related to our environment
Assessing each event based on factual information and wider contextual information available
Produce actionable intelligence information for delivery to colleagues and customers in the form of technical reports, briefings, and data feeds
Participate in regular threat focus meetings with CSOC
Serve as an open source Cyber threat intelligence analyst
Develop and hold expertise on emerging Cyber threats and trends, and the evolving policy and regulatory framework related to Cyber Security
Perform documentation support focused on Cyber Intel doctrine, policies, strategies, capabilities, and intent to conduct Cyberspace operations and Cyber-
oriented groups, individuals, organizations, tools, tactics, and procedures
Assist with drafting, editing, critiquing, and proofreading threat intelligence estimates, briefs, assessments, and memorandums for analyses
Work closely with CSOC to ensure threat intelligence analysis and products are mapped to prioritized corporate assets and risks
Provide critiques of written threat intelligence for the benefit CSOC
Partner with CSOC's incident response team and investigations team to understand incidents and support technical analysis of malicious cyber security events
Oversee collection management, analysis, and / or production capabilities
The Intel Analyst coordinates with external peer groups and information security circles over cyber threats and on the development of global cyber policy to address events ranging from intrusions, malware, DDoS, unauthorized access, insider attacks, and loss of proprietary information.
Networkers acts as an employment agency for permanent recruitment and employment business for the supply of temporary workers and is part of Gattaca Plc.
Gattaca Plc provides support services to Networkers and may assist with processing your application.