The Cyber Fusion Centre is looking for a Senior Cyber Security Analyst. As a Senior Cyber Security Analyst, you will provide input to security strategy and control of systems, networks, physical infrastructure, people and information. You will participate in the design, communication and execution of policies/controls/procedures as appropriate for client and its customers, and as consistent with the company objectives, company reputation and regulatory requirements. In this role, you will act as an operational mentor, coaching junior members within the team.
This team is responsible for the prevention of Cyber Security Incidents by monitoring, detection and analysis of potential intrusions in real time in the client production infrastructure and network. The Cyber fusion Centre team is responsible for analyzing and responding to cyber threats which will involve the use of troubleshooting tools as well as writing scripts to aid in quick analysis to define and apply an appropriate response.
What to Expect:
Provide expertise & guidance to less senior team members.
Support Incident Response and Threat Detection development activities and report to Senior Management ensuring proper awareness and ownership.
Support the introduction and implementation of new capabilities and incident response processes and procedures within the Cyber Fusion Centre
Interact closely with Client's Red Team to further enhance detection capabilities
Participate in incident response simulation exercises from a blue team perspective
Perform proper triage identification and scoping of incidents identification, request, and follow-up of containment actions
Participate in the identification, development and communication of IOCs
Participate in the identification and coordination of eradication and remediation actions with the various stakeholders and ensure timely follow-up.
Enhance and tune tools for efficiently managing large collections of security events
Stay abreast of changing technologies, emerging cyber threats and attack methodologies. Provide recommendations for adaptation of technologies or policies to our Security Delivery team.
As part of a 24X7 SOC; occasional shift work is required for this position. Shift work typically includes one week per month Monday - Sunday, 11 am - 7 pm and occasional holiday work. All other hours are standard working hours.
What will make you successful:
Bachelor's degree in Computer Science or related field
5 to 7 years of related working experience in an incident response role.
Ability to learn in a fast-paced, multi-dimensional, technical environment
Knowledge of intrusion detection and vulnerability assessment capabilities and tools
Preferred Technical Qualifications:
Familiarity with Scripting languages such as PHP, Perl or Python and databases such as MySQL, and knowledge of Unix and Windows.
Any security certifications will be considered an asset