Cyber Security Analyst- L1 @ Epicenter Technologies

Job Description

Role: Cyber Security Analyst- L1

Technology Stack: Cyber Security / information Security , SIEM ( Qradar) , CEH ( Added advantage)

As a Security Analyst, the incumbent will be a part of the Cybersecurity Operations Center team that is focused on creating detection against cybersecurity threats - current and future.

We are seeking a combined skill set of security analyst and security engineering experience.

The primary role will be to improve our detection and incident response platforms & processes by using knowledge and experience of log analysis, threat actor tactics, techniques and procedures and co-working with the Groups cross-technical teams (viz. Network, Datacenter, IT Standards) to develop customized solutions or indicators in both our SIEM and IT infrastructure (log) sources to improve our cyber defense actions and strategies.

Mandatory Skills:

         Experience of working on an Incident Response or CSIRT team.

         Knowledge of Cyber Threat Intelligence, Ability to analyze reports, information on threat actors and emerging attack vectors

         Experience with SIEM tools/applications (Arcsight, Qradar, Similar)

         Experience with tuning and optimization of SIEM rule sets, use cases (Ability to create and improve SIEM rules)

         Knowledge of Security Orchestration

         Knowledge of networks and security concepts viz. topology, protocols, components and principles

         Knowledge of network traffic analysis methods and tools (Open source or Enterprise)

         Knowledge of system and application security threats and vulnerabilities

         Experience with a log aggregation query language (e.g. Splunk, SumoLogic,)

         Understanding of cyberattack stages (e.g. reconnaissance, scanning, enumeration, gaining/maintaining access, escalation of privileges, network exploitation, covering tracks etc.)

         Endpoint and network intrusion detection techniques for malware based on textual or binary patterns (YARA, Snort, Suricata, Sysmon, Similar) 

Desired Skills:

         Bachelor / Masters degree in a technical discipline with 1-3 years relevant experience in Information Security  specifically the areas listed above

         Relevant certifications - CEH, CISSP, Others

         Passionate to work in Cyber Security

         Willing to learn in a fast-paced environment

         Excellent written and oral communication skills, ability to work with cross-cultural/global teams

-          Good English language skills

Employement Category:

+ View Contact

Keyskills:   siem cyber security qradar information security