Job Detail
-
Job ID 5295
-
Career Level Senior
-
Experience 3 Years
-
Gender Male Female
Job Description
Chalhoub Group is currently hiring experienced and motivated candidate for the job role of Senior Analyst Information Security in Dubai. Candidate will be a key member of information security team, responsible for monitoring, analyzing and responding to security alerts and incidents. Also critical role in maintaining the security posture of organization through proactive threat detection, incident investigation and collaboration with cross-functional teams.
Responsibilities of Senior Analyst Information Security
- Security Incident Management: Conduct and lead incident response activities (triage, root cause analysis, escalations, notifications, communication, etc.) resulting from security incidents consistent with Incident Response processes.
- Manage the day-to-day security operational tasks, including but not limited to reviewing security alerts which have been escalated on the Chalhoub environment.
- Recognise and review intrusion events and compromises through in-depth analysis of relevant event data.
- Responsible for documenting observations identified throughout an incident lifecycle and escalating where required to progress any blockers.
- Developing and revising Security Incident Response runbook/playbooks in line with emerging threat landscape.
- Provide Incident Response support for the organization including at times where this may be outside of business hours.
- Provide a technical oversight in advance capability during incidents and configuration changes.
- Conduct dynamic and static malware analysis on samples from incidents flagged where required.
- Understand and articulate emerging threats and incidents to different audiences, including technical, operations management, senior management and executives.
- Provide accurate, succinct andsufficiently detailed documentation of work performed.
- Adhere to escalation and incident management processes and procedures.
What you will do more
- Vulnerability Management: Management of Vulnerability and Application Scanning performed by external vendors and ensuring actions are being followed up.
- Performing analysis including non-technical explanations on Vulnerability Management reports and escalating accordingly where required.
- Provide coaching and mentoring for other technical teams on technologies and vulnerability remediation as required.
- Security Engineering: Monitor and analyse the results of advice originating from the MSSP based on Intrusion Detection Systems (IDS), Anomaly Detection Systems (ADS) andSecurity Incident and Event Management (SIEM) toolset information to identify and manage security incident remediation.
- Provide enhancement to use cases and operational efficiency across the security environment.
- Respond to, report on and track security events reported to the SIEM, system and event logs and other sources that have been correlated by Symantec Managed SIEM Service which require further analysis.
- Security Enhancement and Optimizations: Implement security improvements by assessing current situation; evaluating trends; anticipating requirements.
- Monitor external event sources for security intelligence and actionable events/incidents.
- Work with the Security Operations Manager to develop Security services and service improvement activities.
- Maintain and improve personal knowledge of the technology landscape of the group.
- Interact efficiently with other team members to sustain a highly technical environment and sharing knowledge regularly.
- Ability to clearly articulate cyber security risks against business outcomes and provide advice on the remedial actions that should be undertaken.
- Provide advice and guidance to teams around threats, vulnerabilities and security changes.
Requirements for Role of Senior Analyst Information Security
- A bachelor’s degree in computer science, information security, cybersecurity, or in a related field.
- 3+ years of experienced in managing security operations (preferably in the retail industry) and working with security service providers.
- Experienced with log onboarding, ingestion and optimization of use cases.
Skills And Knowledge Desired
- Strong knowledge and experience of implementing security automation tools and techniques in a hybrid, multi-cloud environment.
- Strong understanding of security risk management and experience of writing security risks identified from security incidents and vulnerability management.
- Comprehensive understanding of the MITRE ATT&CK framework and common tactics used by Threat Actors to perform cyber-attacks.
- Deep understanding of Email Security and performing header analysis to identify Indicators of Compromise (IOC) in addition to technical control failures post-delivery.
- Practical knowledge of security defense techniques for E-Commerce web and mobile applications, cloud platforms, network infrastructure, end user computing and APIs.
- Knowledge of security and privacy standards as well as frameworks including ISO 27001, PCI DSS, GDPR etc.
- Demonstrably self-motivated, pro-active, action orientated to achieve deadlines.
- Able to perform end to end incident response activities for common threats independently.
- Technical expertise on security technologies such as SentinelOne, Firewalls and proxy servers.
- Communicate effectively to both technical and non-technical audience in highlighting cyber security risks and incidents.
- Develop a strong relationship with internal stakeholders, ensuring security risks highlight are track to mitigation.
Other jobs you may like
-
Technical Documentation Specialist/Graphics Designer NAFFCO Dubai
- @ NAFFCO
- Jebel Ali Free zone، South Area، Jebel Ali Free Zone Street, Dubai, AE