Description
The security analyst is responsible for analysing cybersecurity events and improving threat detection capabilities and procedures. If an event results in a security incident, the analyst will work with the relevant stakeholders to respond and contain the incident.
This analyst role will come under the IT Risk and Security Department reporting to the Security Operations Manager.
Key Responsibilities
• Proven experience using analytical and data visualization tools to automate the analysis and provide insights of large dataset and correlate with SIEM and other sources of information and conduct investigative works into all traffic anomalies against established, historical baselines to identify the root cause to an incident.
•Knowledge of using AI-driven and Machine Learning tools to monitor and analyse real-time security investigations to initiate triage, containment and remediation of security threats and other malicious activity, and escalate issues as needed.
•Knowledge in ethical hacking to identify potential threats and expose vulnerabilities to protect the organisation from malicious attackers.
•Knowledge of digital forensics to analyze security tool events/alerts, while maintaining proper evidence-handling best-practices during an incident.
•Knowledge in Reverse Engineering to comprehend the performance of a software program or application for malware analysis.
• Provide of reporting and metrics around security monitoring by designing dashboards for asset owners and management consumption.
• Responsible for continuous monitoring, tracking and closure of security events and requests from managed SOC, systems and users.
• Work with the Incident Manager in incident response to minimize the impact of a security incident to our organisation.
Key Requirements:
• Minimum of (3) three years direct Information Security experience in a security engineer, architect, consultant or a similar role, preferably with incident management experience in a SOC environment.
• Strong practical experience in Cyber security: Cyber kill chain, TTP, threat intelligence, and malware triage. • Strong understanding of Different Attacks on System, Network, Applications.
•Strong knowledge in Internet infrastructure, networking technology and network security (i.e. DNS, DHCP, Firewall, WAF, IDS, IPS, VPN, APT and TCP/IP protocols) and experience in Splunk preferred
•Comfortable with analysing and processing large datasets and able to read and understand packet-level data, handle Network/Host Security products (NIDS/NIPS, firewalls, HIPS, Proxy, AV, scanners, etc.) and understand security events from.
Thanks,
Rajkumar
199801439D
Disclaimer: The company is committed to ensuring the privacy and security of your information. By submitting this form, you consent to the collection, processing, and retention of the information you provide. The data collected (which may include your contact details, educational background, work experience and skills) will be used solely for the purpose of evaluating your qualifications for the position you're applying for. Your data will be stored securely and retained for the duration necessary to fulfill our hiring process. If you are not selected for the position, your data will be kept on file for a limited period in case future opportunities arise. You have the right to access, correct, or delete your data at any time by contacting us at Quess Singapore | A Leading Staffing Services Provider in Singapore (quesscorp.sg)
