Senior Associate - Cybersecurity Analyst Incident Response

Industry/Sector

Specialism

Management Level

& Summary

As a member of the Threat Response Team, you will be responsible for swiftly managing and resolving security incidents. You will work with SIEM tools like Splunk and MDE to triage and effectively respond to threats. Your role will involve investigating new attacker methodologies, addressing email threats such as phishing and BEC, and monitoring data loss prevention alerts. Collaboration with L2/L3 team members, customers, and stakeholders will be key in driving security incidents to resolution. Youll also focus on automating routine processes and improving security rules and detections to enhance the teams effectiveness.

If you are seeking an exciting career with the scope to grow your cyber security skills through major change on a global scale, then NIS will empower you to do so.

s

Triage security incidents using SIEM tools such as Splunk or MDE.

Investigating and identifying new attacker methods

Investigate Email threats such as Phishing, BEC and different Attack Vectors

Monitoring Data loss prevention incidents.

Collaborate with L2/L3 team members and stakeholders to efficiently resolve security incidents

Identify opportunities for process automation to optimize daytoday operations.

Constantly look for opportunities to improve security rules and detections.

Building solid relationships with stakeholders and colleagues.

Approaching stakeholders and colleagues in an organized manner Delivering clear requests for information.

Demonstrating flexibility in prioritizing and completing tasks

Performing research using available tools and methodologies

Analyzing data and presenting findings to colleagues

Writing and communicating in a corporate environment

Mandatory skill sets

Handson experience in handling SIEM Tools such as Splunk or MDE

Proficient in Incident Management and Response.

ability to recognize and analyze suspicious or atypical activities effectively.

Solid understanding of MITRE Attack Framework, threats, etc.

Indepth knowledge of security concepts such as cyberattacks and techniques, threat vectors, Firewalls, Incident management, Networking, etc.

Preferred skill sets

Strong understanding of the operating system and computer networking concepts.

Stays current with new and evolving technologies via formal training and selfdirected education

Experience in malware analysis is a plus.

Experience in Scripting/Automation is a plus.

Good Analytical skills, Problemsolving, and Interpersonal skills.

Candidates must be able to work in a flexible schedule within a 24x7 environment, as well as may be expected to work on holidays. Appropriate compensatory offs would be provided in lieu of a working day on a holiday

Years of Experience Required

3 5 Years

Education qualification

Bachelor or equivalents.

Certifications

CEH

ECIH

ECSA/LPT

OSCP

SC200 (Microsoft)

AZ500

Splunk Certified User

Education

Required Skills

Optional Skills