Security Operations Analyst

Responsibilities

1. Analysis of host-based and network security logs.
2. Administration, monitoring and troubleshooting of antivirus activities and email gateway issues.
3. Assist with security related software and firmware, (e.g., endpoint, vulnerability scanners, firewalls, IPS, DNS, proxy) to maintain security and continuity of service.
4. Assist with security related issues relating to infrastructure.
5. Participate in security incident response, providing in-depth technical analysis.
6. Ensure security incidents are identified in a timely manner by performing security alert detection and analysis across multiple technologies.
7. Support communication of potential security related incidents. Ensuring appropriate stakeholders are informed of relevant updates at regular intervals.
8. Tracking and maintaining of security metrics to enable upper-level management reporting.
9. Produce reports for management concerning vulnerabilities and other security exposures, including misuse of information assets and noncompliance.
10. Participate and contribute to security forums, providing an appropriate level of technical analysis.
11. Actively participates in security threat monitoring, attack methods, incident response and provide in-depth technical analysis
12. Review existing and new CVE entries against infrastructure, providing insight and remediation strategies.
13. Utilise security knowledge to assess security requirements and controls for system acquisition projects. Ensure that appropriate controls are implemented as planned.
14. Work alongside the Cyber Security Manager to evaluate a wide range of threat intelligence sources and develop strategic and tactical response plans accordingly.