Senior Cyber Security Analyst

Job Description

JOB DESCRIPTION The Senior Cyber Security Analyst is a very technical, hands-on role and you will be part of a team dealing with operational security, user access reviews security event analysis, incident response, identifying, managing and mitigating security risks Team Context and Objective The security team has accountability for enabling the full lifecycle of information security, Information risk management and business continuity for the whole of the business. This security function is a core part of Lebara s Technology Department and formally reports to the Group Chief Technology Officer (CTO) This Security function takes the lead on continuous development, efficiency and sustainability information security governance, operations and business continuity. The core objective is to promote and establish lean security business principles, and foster the synergy and orchestration amongst People, Process and Technology with an aim to become a Business Enabler function. RESPONSIBILITIES Perform assessments of systems and networks within the networking environment and identify where those systems and networks deviate from acceptable configurations Establish strict program control processes to ensure mitigation of risks including support of process, analysis, coordination, testing, security documentation, as well as investigations, software research, hardware introduction and release, emerging technology research inspections and periodic audits Assist in the implementation of the required telecom regulatory information security policies and make recommendations on process tailoring, participate in and document process activities Perform recurring cyber security SOW to include auditing, configuration management, user training Perform analyses to validate established security requirements and to recommend additional security requirements and safeguards Provide suggestions for security solution improvements based on security issue response and technology knowledge and experience Assessment and analysis of threats, vulnerabilities, and risk for assigned system(s) Develops security impact analyses Reviews technical assessments Support, coordinate, and continuously monitor system security posture and ensure adverse events are formally handled and reported Continually improve and update knowledge to accommodate changes to the company s regulatory environment and needs Excellent written, verbal communication and presentation skills QUALIFICATION Proficient understanding of Cyber and IT security risks, threats and prevention measures Proficient understanding of SQL and relevant scripting languages Demonstrated security system analysis skills Proficient understanding of security standards and best practices Demonstrated risk assessment and management skills Demonstrated understanding of networking and network security Demonstrated understanding of network monitoring and protocols Demonstrated knowledge of relevant .Net development, programming and scripting languages Functional understanding of network controls and policies to stop cyber threats. Familiarity with external facing security controls that can stop external attacks that may occur Familiarity with threat actor activities and the attacks that may occur in each layer of the OSI model Strong understanding of core networking concepts (e.g. Email, TCP/IP, DNS, HTTP, proxy, load-balancing, etc.) Ability to make information security risk determinations based on intelligence analysis Understanding cyber threats, malicious cyber threat actor motivations, and capabilities relevant to regions of interest Demonstrable experience troubleshooting and simulating Email traffic analysis Functional experience with Splunk, SIEM, or other log aggregation & analysis technologies Experience with cloud solutions such as AWS or other IaaS/PaaS/SaaS environments Strong communication skills and ability to interact professionally with a diverse group including executive management, managers and subject matter experts. Strong management skills, leading people, delegating tasks, setting goals and ensuring objectives are met in continuous and deadline-oriented activities. Pro-active, self-motivated approach and ability to work independently within a global security team. Bachelor s Degree in Information Security, Computer Science, Cybersecurity or equivalent work experience CompTIA Security EC-Council Certified Ethical Hacker (CEH) CompTIA Cybersecurity Analyst (CySA ) Cisco Certified Network Associate-Security (CCNA-Security) CompTIA Advanced Security Practitioner (CASP ) ISC Certified Information Systems Security Professional (CISSP) GIAC Global Industrial Cyber Security Professional (GICSP) GIAC Certified Forensic Analyst (GCFA) GIAC Certified Incident Handler (GCIH) At least 10 years of experience in Information Security. High proficiency in written and spoken English