Junior Security Analyst

Project Overview:

We are hiring Junior Information Security Analyst to work in our growing IT Security team.

What you'll do:

• Provide detection, identification, and reporting of possible cyber-attacks/intrusions, anomalous activities, and misuse activities;
• Participate on automation of the incident's prioritization and false positives identification;
• Use Security tools/services for continual monitoring and analysis of system activity to identify malicious activity;
• Perform security event and incident correlation using information gathered from a variety of sources within the enterprise;
• Participate on interconnecting the SIEM tool with sources of security incidents - e.g. logs from servers and applications, IDS/IPS, network and security devices, Antimalware system, etc.;
• Build new use cases and enhance already existing ones, create alerts and monitoring dashboards, build reporting and Security KPI;
• Actively detect and identify security weaknesses (Risks and Vulnerabilities) and determine the required remediation plan;
• Work on improvements and or automation of existing systems for security propose.

Skills:

• Academic degree in Information/Cyber Security or related field and 1 years' relevant experience will be a great plus;
• Knowledge in Security Incident Management best practice, methodology, malware detection and removal guidelines/instruction;
• Knowledge and experience with Unix-like/Microsoft operating systems, web servers (Apache, IIS, nginx), where you have practical experience hardening them and solid understanding of how they work;
• Knowledge of IT and Network Security principles, techniques and technologies;
• Knowledge of security systems on the market (eg. Firewall, Antimalware, SIEM, HIPS, DLP, etc.);
• Knowledge of Networking protocols and technologies, e.g. TCP/IP, Firewalls, NGFW, Routers, VPNs etc.;
• Application security and general information security knowledge (eg. XSS, buffer overflow, URL tampering, SQL Injection, DDoS, Botnets, etc.).

Will be plus:

• Proficiency in written and spoken English;
• Programming and/or scripting skills in any of the following: Python, Php, Bash, Powershell, Java;
• Professional experience with IT and Network Security products and services, at least one year of professional experience with SIEM platforms and of doing security analytics;
• Experience with Vulnerability scanners and/or penetration testing;
• Experience with IDS/IPS solutions (Suricata, Snort, NGIPS, Fortigate);
• IT Security Certifications;
• Experience in International Security Standards (ISO/IEC 27001, PCI DSS, NIST 800-53; will be plus - SOC2, GDPR);
• University degree in Information Technology, ideally IT Security related.