CareerFinders, on behalf of our client, a progressive international Investment firm offering brokerage services across various affiliates and subsidiaries, we are seeking to recruit a Senior SOC Analyst (Security Operations Centre) to join their expanding team of professionals. The successful applicant will perform key security service activities including identification of assets, scanning for infrastructure and application vulnerabilities, security penetration testing and security monitoring.

Role Overview:
 
In this role you will perform key security services activities including identification of assets, scanning for infrastructure and application vulnerabilities, security penetration testing, and security monitoring. In addition, you will perform investigations and perform analysis of events in order to thwart internal and external threats to the environment. You will collaborate on an ongoing basis to support detection, triage, incident analysis, containment, remediation and reporting of vulnerabilities, events, and escalated incidents while coordinating business priorities, emerging and actual threats and best practices to ensure the confidentiality, integrity and availability of the information assets.
 
Key Duties/Responsibilities:
 

• Identify and remediate infrastructure and application vulnerabilities identified in continuous scanning and regular penetration testing exercises and assist with risk prioritization.
• Analyze and respond to security threats from Firewall (FW), Intrusion Detection Systems (IDS), Intrusion Prevention Systems (IPS), Antivirus (AV), Endpoint Detection and Response (EDR), Network Detection and Response (NDR), Email Security, Cloud Security, and other security threat data sources.
• Respond in a timely manner (within documented SLA) with thorough and concise analysis and recommended actions.
• Assist in establishing a mature and optimized Security Operations Center discipline to support managed security services focused on vulnerability and security information event management engagements.
• Document actions in cases to effectively communicate information to internal and external stakeholders as well has for historical retrieval.
• Resolve problems independently and understand escalation procedures.
• Conduct scanning and monitoring activities to provide in depth visibility into potential known and unknown vulnerabilities and threats that may pose risk to the Group environments.
• Participate in security incidents and act as the technical Subject Matter Expert during significant security incidents.
• Utilize analytics to identify potential vulnerabilities and threats to the environment.
• Detect, respond, mitigate, and report on cyber threats/incidents that may impact the environment.
• Collaborate with NOC, ITOC teams on matters related to security scanning and monitoring across a global footprint.
• Conduct operations surrounding cyber security incident response technologies including network logging and forensics, security information and event management tools, security analytics platforms, log search technologies, and host based forensics as applicable.
• Act as an internal information security consultant to the business and technology units, advising on risks, threats and control practices related to SOC - Assurance and Response.
• Assist in development and knowledge sharing within the team.
• Assist in security console tuning.
• Perform threat hunts that target known vulnerabilities, threats and other attack vectors.

Key Skills/Experience:
 

• Minimum of a bachelor's degree or equivalent experience or technical certifications.
• Financial services technology background.
• Experience in Cyber Security is a must.
• Experience with Python, PowerShell, and API programming is a plus.
• Security Certifications: GIAC, OSCP, CCSK, Azure, AWS, ISC2, CompTIA, ISACA, EC-Council.
• Advanced SIEM analysis and Incident Response.
• Solid knowledge of Cloud Security, Monitoring, Automated Incident Response, offensive security.
• Solid Knowledge of network/endpoint forensics, malware analysis, reverse engineering.
• Practical experience with TCP/IP networking.
• Working knowledge of Routing and Access Control Devices.
• Experience with Linux, Windows, iOS, and Network Operating Systems.
• Experience with Endpoint and Network Detection Response technologies.
• Experience with Cloud Security configuration best practices.
• Desire to pursue industry related certifications: Security+, C|EH, GSEC, etc.
• Critical thinking and problem-solving skills.
• Passion for information security.
• Strong interpersonal and organization skills.
• Experience with Vulnerability Management technologies.
• Experience with Security Information Event Management technologies.

To apply for this vacancy, please send your CV, along with any covering letter to jobs@careerfinders.com.cy quoting the reference number CAR5020. Please note that due to the high volumes of applications received only shortlisted applicants will be responded to. By sending us your CV you are giving CareerFinders your consent to be contacted for this and any other suitable vacancies that we believe match your skills and experience. To view our privacy policy, please click www.careerfinders.com.cy/privacy-policy.