Information Security Analyst II, Blue Team

Summary

• The Blue Team is responsible for defending the organisation's networks systems and applications by identifying and mitigating threats ensuring robust security measures are in place and responding to any breaches with appropriate countermeasures.

What you'll do

• Event analysis: analyze security events and incidents to identify the root cause and impact on the organization utilizing a variety of tools (mainly the SIEM).

• Incident classification: classify incidents as per established guidelines.

• Containment and eradication: follow the organization's playbooks for reviewing incidents and implement measures to contain and eradicate threats ensuring that the organization's systems and data are secured.

• Recovery: when applicable help in the recovery efforts post-incident to restore systems and services to operational status.

• Lessons learned: participate in post-incident reviews to document lessons learned and improve future incident response efforts.

• Secure Operations Centre Collaboration: work closely with the SOC to monitor and respond to incidents leveraging the in-house expertise and technologies.

Minimum Qualifications

• Currently living in the UK;

• At least 2 years of experience with security incident response;

• Experience with Incident Report Writing; Threat Analysis; Security Incident Handling;

• Experience with Log Parsing; SIEM; MITRE Framework;

• Desirable experience with scripting and automation; Reverse engineering; Malware analysis;

Core Benefits

• Annual leaves

• Ability to buy/encash/carry over annual leave

• Heating Allowance

• Internet subsidy

• Health Insurance

• Dental care

• Life Insurance

• Pension Contributions

• Thanks Ben – Health & Wellbeing Virtual Card

• Thanks Ben – Work from Home Virtual Card

• Thanks Ben – Optical Plan Virtual Card

Technologies that we apply in our day

• AWS

• SIEM