Cyber Security Analyst - Infrastructure - Financial Services
Excellent opportunity opens for a highly skilled and experienced Cyber Security Analyst to join an International Bank's Information Security team in ensuring the safety and security of our bank's technology infrastructure. The Cybersecurity Analyst is a hands-on technical role centred around providing effective security monitoring and incident response. The role's secondary purpose is to improve the Bank's security posture through effective vulnerability management and remediation of assurance findings.
Key Responsibilities:
* Investigate security alerts raised by our XDR, SIEM, email security gateway and DDOS protection tools in coordination with our managed SOC.
* When required, take the lead on technical incident responses and investigations, ensuring rapid response, containment, and business recovery from cyber incidents.
* Implement security measures and protocols to safeguard our technology infrastructure to ensure that technical security controls are operating effectively.
* Lead on identifying and implementing security automation use cases and integration between security tools.
* Respond to and investigate security incidents and provide timely reports to the management.
* Calibrate our security tools to improve our security posture and reduce false positives.
* Monitor and analyse security logs and events to detect any suspicious or malicious activities.
* Conduct regular risk assessments to identify and evaluate potential security vulnerabilities and carry out pro-active threat hunting.
* Facilitate internal and external security penetration testing and vulnerability scanning.
* Keep up to date with the latest security technologies and best practices to enhance the bank's security posture.
* Assist in developing and maintaining security standard operating procedures (SOPs).
* Collaborate with cross-functional teams to investigate and resolve security issues.
Ideal Skills & Experience:
* Experience in incident investigation and response.
* Knowledge and experience across various security domains, including Infrastructure, Cloud, Applications and Networks.
* Hands-on knowledge of technical security solutions outlined in Technical Skills section.
* Experience with documenting processes.
* Relevant certifications such as CISSP, Security+, Azure Security Engineer, etc.
* Microsoft 365 Defender.
* KQL.
* SIEM (Sentinel, LogRhythm preferred).
* Email security (Checkpoint Harmony preferred).
* Microsoft Azure, Microsoft 365 administration, Microsoft Windows Server knowledge.
* Hands-on experience with implementing security audit findings.
* Experience with configuring and reading reports of vulnerability scanning tools.
* Experience of IT in financial services.
* Tenable or Qualys.
* Microsoft Windows 10/11.
* VMware.
* Active Directory, DNS and Microsoft CA.
* Networking - firewalls, DDOS mitigation appliances.
* Mobile device management software such as In-tune.
Qualifications:
* Bachelor's degree in computer science, Information Technology, or a related field.
* Minimum of 3 to 5 years of experience in information security, preferably in the banking or financial services industry.
Interested? Please Apply!
#J-18808-Ljbffr