Senior Security Analyst

You will be responsible for triaging alerts and analyzing security events/logs to identify threats such as computer viruses, exploits, and malicious attacks. Your critical thinking skills will be essential in consolidating information from various sources to assess the presence of a threat. Additionally, you will conduct security incident response, investigations, security assessments, and risk analysis on existing systems and applications. Analyzing web traffic for suspicious patterns, performing vulnerability assessments, penetration testing, and preparing security documentation for audits will also be part of your duties. Staying updated on the latest cybersecurity trends, threats, and technologies is crucial to proactively address emerging risks. To qualify for this role, you should have a Bachelor's degree in computer science, Information Technology, cybersecurity, or a related field, along with at least 3 years of relevant experience. Proficiency in risk assessments, vulnerability assessments, penetration testing, and deploying/maintaining email security systems is required. Hands-on experience with security tools such as IDS/IPS, SIEM, and penetration testing tools like Qualys/Tenable is necessary. Troubleshooting skills for security alerts related to Firewall, Microsoft Entra ID/O365, Windows, and Linux Servers are essential. Knowledge of GRC frameworks like PCI-DSS, ISO 27001:2022 & 9001:2015, SOC2 Type II, and certifications like CEH (Certified Ethical Hacker) and AZ-500 Microsoft Azure Security Technologies/Cloud Security would be beneficial. Experience with compliance evidence gathering for standards like PCI DSS, SOC2, HIPAA, and ISO, as well as understanding of IT infrastructure architecture in on-premises and cloud environments, are also key requirements. Proficiency with tools such as Tenable, QualysGuard, Nessus for vulnerability management, Sophos, Bitdefender, Trend Micro, Windows Defender for endpoint protection, and Wazuh, DataDog, Splunk, Microsoft Sentinel, Sumo Logic for SIEM will be advantageous. Familiarity with Email Security tools like Zix email security, Exchange Online Protection, Defender for Office 365, and compliance standards like ISO ISMS, SOC2, PCI DSS, HIPAA is preferred. Possession of certifications such as AWS Certified Security - Specialty, CISSP, CISM, CISA, GIAC, or NIST CSF would be considered a plus. Join our team at BETSOL and contribute to our mission of providing top-notch digital transformation and data management solutions to enterprises worldwide.,