Senior Technical Analyst - Cyber Security

About the Organisation

DataFlow Group is a pioneering global provider of specialized Primary Source Verification (PSV) solutions, and background screening and immigration compliance services that assist public and private organizations in mitigating risks to make informed, cost-effective decisions regarding their Applicants and Registrants.

About the Role:

cyber security expert

The ideal candidate will have a strong understanding of threat detection and response, and experience with TrendMicro's XDR platform to investigate workstations (windows/mac) and public cloud assets in AWS. Identifying opportunities and designs to automate security tasks, such as threat intelligence enrichment, incident response playbooks and automated workflows using TrendMicro XDR platform is desirable.

You will be expected to use your experience, talent and passion to work with a small global team in order to provide a 24x7 service to the rest of the world. Flexibility, energy, curiosity and a desire to simply get the job done will be key. The role encompasses a range of responsibilities that will focus on threat detection and response ,building security orchestration and automation, with ample opportunity to learn more in-depth skills related to workstations and servers. Our company has taken Google Workspace and AWS cloud services for its core technology suite, and you will have ample opportunity to stretch your knowledge into these cutting edge technologies. Work breakdown structure

• Technical Delivery(Automation):40%
• Technical analysis: 60%

Duties and Responsibilities:

• Ensure security alerts are thoroughly investigated and closed within SLA.
• Measure quarterly Mean time to response (MTTR) and improve 5% of MTTR every quarter
• Ensure up-time is 99.9% for all infrastructure components
• Build playbook and automation for top 80% security alerts
• Ensure services are providing optimized performance to end-users 99% of the time
• Severity 1 incidents returned to service within 2 hours

Qualifications:

• Bachelor of Engineering (B.E.) or Bachelor of Technology (B.Tech) degree
• A minimum of 3 years of industry experience in cyber security incidents investigation and response
• Monitor and analyze security events, alerts, and incidents generated by TrendVision/XDR
• Strong understanding of threats and attacks detection.
• Experienced on threat hunting and threat intelligence.

• Experience and working knowledge of:

1) Windows and MAC OS

2) Microsoft or Linux servers

3) Cloud-based services such as AWS, Google Workspace

4) Serverless architecture and technology (Clusters, containers etc.)

• Proficiency in scripting languages (e.g., Python, PowerShell)
• Implemented automation tools and orchestration frameworks for efficiency;
• Best-in-class English communication skills, with a natural confidence and ability to communicate clearly worldwide.
• Ability to learn quickly and adapt to changing environments.
• An ability to flex your hours as required, especially during releases or system outages