Report this Job
Job Description
Role:Cyber Security Analyst- L1
Technology Stack: Cyber Security / information Security , SIEM ( Qradar) , CEH ( Added advantage)
As aSecurityAnalyst, the incumbent will be a part of theCybersecurityOperations Center team that is focused on creating detection againstcybersecuritythreats - current and future.
We are seeking a combined skill set ofsecurityanalyst andsecurityengineeringexperience.
The primary role will be to improve our detection and incident response platforms & processes by using knowledge and experience oflog analysis,threat actor tactics, techniques and procedures and co-working with the Groups cross-technical teams (viz. Network, Datacenter, IT Standards) to develop customized solutions or indicators in both our SIEM and IT infrastructure (log) sources to improve ourcyberdefense actions and strategies.
Mandatory Skills:
Experience of working on an Incident Response or CSIRT team.
Knowledge ofCyberThreat Intelligence, Ability to analyze reports, information on threat actors and emerging attack vectors
Experience with SIEM tools/applications (Arcsight, Qradar, Similar)
Experience with tuning and optimization of SIEM rule sets, use cases (Ability to create and improve SIEM rules)
Knowledge ofSecurityOrchestration
Knowledge of networks andsecurityconcepts viz. topology, protocols, components and principles
Knowledge of network traffic analysis methods and tools (Open source or Enterprise)
Knowledge of system and applicationsecuritythreats and vulnerabilities
Experience with a log aggregation query language (e.g. Splunk, SumoLogic,)
Understanding of cyberattack stages (e.g. reconnaissance, scanning, enumeration, gaining/maintaining access, escalation of privileges, network exploitation, covering tracks etc.)
Endpoint and network intrusiondetection techniques for malware based on textual or binary patterns (YARA, Snort, Suricata, Sysmon, Similar)
Desired Skills:
Bachelor / Masters degree in a technical discipline with 1-3 years relevant experience in InformationSecurity specifically the areas listed above
Relevant certifications - CEH, CISSP, Others
Passionate to work inCyberSecurity
Willing to learn in a fast-paced environment
Excellent written and oral communication skills, ability to work with cross-cultural/global teams
-Good English language skills
Employement Category:
Employement Type: Full time
Industry: IT Services & Consulting
Role Category: General / Other Software
Functional Area: Not Applicable
Role/Responsibilies: Cyber Security Analyst- L1
Epicenter Technologies