Вакансии ИТ

Cyber Security Incident Analyst

Дата:11 Октября
Требования:Candidates will be able to demonstrate strong problem solving skills, have experience in various tool sets, have knowledge of security best practices, be able to think critically, and be able manage flexible scheduling.
Monitoring and analyzing network traffic, Intrusion Detection Systems (IDS), security events and logs;
Performing an in-depth investigation of, and reporting on, identified malicious requests by examining records in web, database and application logs;
Prioritizing and differentiating between potential intrusion attempts and false alarms;
Efficiently coordinating, and escalating where necessary, the tracking, handling, and reporting of all security events and computer incidents in accordance with internal procedures;
Creating and tracking security investigations to resolution;
Composing security alert notifications and other security related communications;
Advising incident responders in the steps to take to investigate and resolve computer security incidents;
Staying up to date with current vulnerabilities, attacks, and countermeasures;
As a member of the GNS Security team, participate in providing security training and education to technical staff and being an internal security consultant to advise and influence business and technical partners;
The ideal candidate should be able to multitask and give equal attention to a variety of functions while under pressure.
Квалификация:2 years of Information Security experience;
Demonstrated experience with Intrusion monitoring, Incident response and mitigation, web application security, threat research and/or intelligence analysis;
Ability to read and write scripts in various languages. (PHP, Bash, PowerShell, SQL, and similar);
Experience with Anti-Viruses, Intrusion Detection Systems, Firewalls, MS Active Directory, Vulnerability Assessment tools and other security tools found in large network environments, along with experience working with Security Information and Event Management (SEIM) solutions;
Background in hands-on computer and networking experience to include an understanding of TCP/IP, routing, and major Internet protocols;
Familiarity with various network and host-based security applications and tools, such as network and host assessment/scanning tools, network and host based intrusion detection systems, and other security software packages.