D&T Analyst II - Cyber Security, Awareness

Job Description

KEY ACCOUNTABILITIES Monitor and analyze user activities for signs of potential insider threats. Develop and maintain threat detection tools, techniques, and procedures. Utilize threat intelligence platforms to gather, analyze, and disseminate relevant information. Perform advanced analysis of insider threat and DLP alerts across various egress channels in on-premise and cloud environments, prioritizing threats using available tools. Investigate and document event/alert patterns, collaborating with Cyber Defence, Legal, Privacy, and HR teams during incidents as necessary. Create detailed reports on security incidents, investigations, and mitigation efforts. Contribute to refining detection tool policies, rules, and operational documents by highlighting areas for improvement. Lead the simulated phishing program, including metrics and executive summaries. Coordinate with internal and external partners to develop and update quality training content. Develop and distribute enterprise-wide communications on information security risks and guidance. Create marketing materials and content for global Security Awareness events, including in-person site events as needed. Ensure the security awareness program effectively communicates security policies, fostering a global security culture. MINIMUM QUALIFICATIONS Education Full time graduation from an accredited university (Mandatory- Note: This is the minimum education criteria which cannot be altered) Minimum 4 years of experience in SOC, Incident Response, Insider Threat or Security Awareness. PREFERRED QUALIFICATIONS Excellent written, verbal communication and presentation skills. Ability to create engaging and effective training materials. Strong organizational and project management skills. Ability to work effectively in a team environment and collaborate with various stakeholders. Certifications: The following certificates are preferred but not mandatory, CompTIA Security+ CompTIA Cybersecurity Analyst (CySA+) EC-Council Computer Hacking Forensics Investigator (CHFI) EC-Council Certified Incident Handler (ECIH) SANS GIAC Security Essentials (GSEC) Microsoft Certified: Azure Fundamentals (AZ900) Microsoft Certified: Information Protection and Compliance Administrator Associate (SC400)