Sec Ops

We are looking for a talented and self-motivated Security Operations Specialist to join our team. The Cyber Risk Management and Security Team is looking for a Security Operations Specialist to shape and influence the security standards, monitoring processes and operational activities. He/She will be responsible for daily cyber operations, incident responses, investigation and resolution. This is an on-going process of keeping cyber threats at bay and to manage our vulnerability and readiness to cyber threats.

• Help establish cyber security policies and protocols.
• Guide business owners on best practices and incident reporting, tracking and escalation.
• Monitor and respond to security events and incidents using established incident response plan/runbook and creating process and procedures where none are already established.
• Creation of SIEM custom detection rules to identify suspicious cyber threats or anomaly activities.
• Experience responding to security events, including front-line analysis and escalation, on hacktivist, cybercrime, and APT activity.
• Support cyber incident response plan/lifecycle to ensure proper assessment, containment, mitigation and documentation.
• Reviews incident data and provide root cause analysis and recommendations on how to prevent future occurrences
• Identify coverage and efficiency gaps in IR runbook, security data and response tooling.
• Support a continuous vulnerability scanning and reporting program encompassing a vast network of internal and public-facing IT assets across multiple platforms and architectures.

1. Degree/Diploma or higher in Computer Science, Information Systems or equivalent
2. At least 3 years of experience in cyber security operations or cyber security engineering
3. Strong knowledge of various automated security control systems, encryption, message authentication, vulnerability assessment, threat intelligence intrusion detection, penetration testing and incident response.
4. Experience responding to security events, including front-line analysis and escalation, on hacktivist, cybercrime, and APT activity.
5. Good knowledge in Incident response lifecycle, different Operating Systems, TCP/IP networking and application layers.
6. Provide after-hours support on an on-demand basis.
7. Ability to work independently and with minimal supervision on assignments.
8. Strong analytical, problem solving, oral and written communications skills.