Cyber Security Analyst L2

One of the world's largest Marine Navigation Digitial solutions provider, having spread in more than 4 continents including N. America, Europe, Asia, Africa. Legacy of 40+ years.

Cybersecurity is a fast-paced ever-changing field that results in a very unique, dynamic work environment. Cyber Security Analysts are trained Cyber defenders that are empowered to make high stake decisions based on numerous data sources to enforce and ensure security objectives while enabling and maintaining business operations. The SOC Team provides 24x7x365 support for initial triage and incident response actions as well as actively monitoring the threat landscape for global Organisation.

ESSENTIAL FUNCTIONS:

Utilizes and makes improvements to Organisation’s security systems allowing for real-time analysis of security alerts.
Provides first and second tier support for moderately complex potential security incidents reported by customers.
Monitors and analyzes the inbound network traffic for suspicious activity and potential cyber security incidents.
Strives to remain technically current with latest security techniques and trends in the industry that translate to operational action items.
Supports technical team with projects, initiatives, and solving moderately complex support issues as assigned.
Operates aspects of cyber security platform to improve monitoring and alerting services.
Gathers details and for employee investigations and legal discoveries.
Creates instruction and knowledge articles for security systems including cyber awareness.
Interfaces with Security Engineering team to verify and validate compliance requirements with enterprise standards, policies and regulations.
Acts as a security advocate for the entire IT Security team to promote participation and adherence to security policies and procedures.
Demonstrates proficient use and knowledge of standards and procedures for task-oriented operations.
Make recommendations for changes to the environment that can help in the removal of vulnerabilities and reduction in the risk of exploitation that may result in potential incidents.
Reviews and validates security compliance reports tracking and reporting any activity that is inconsistent with company policy.
Utilizes ticket management system to review, analyze, and provide solutions for customer issues based on polices, security best practices or other documented processes.
Serves as mentor to junior team members on the SOC, IT Operations, and in Security Engineering.
Ensures that all security requirements are met or exceeded.
Applies Organisation’s Mission Statement and Quality Policy and exhibits enthusiasm for and a desire to see Organisation succeed.

Information security related experience, in areas such as: security operations, incident analysis, incident handling, and vulnerability management or testing, system patching, log analysis, intrusion detection, or firewall administration.
Working experience and knowledge of security related technologies such as intrusion prevention and detection systems, web proxies, SIEM, SOAR, EDR, firewalls, web application scanner, vulnerability scanners and forensics tools.
Ability to work in a fast paced, dynamic environment.
Security + certification.
Other security certifications (GCIH, GCED, CISSP).
Experience with cyber security policies and implementation of Risk Management Framework (RMF).
Experience with NIST 800-53 and/or NIST Cyber Security Framework (CSF).
Experience in Security Orchestration, Automation, and Response (SOAR) and Security information and event management (SIEM) Platforms.
Experience with log management platforms (Splunk, Elastic search/Logstash/Kibana - ELK / Elastic Stack).
System administration experience: Windows and Linux/Unix Scripting OR development experience (Python, Javascript, Powershell, C#, Perl).