Information Security Analyst II, Blue Team
To see similar active jobs please follow this link: Remote Development jobs
Summary
The Blue Team is responsible for defending the organisation's networks, systems, and applications by identifying and mitigating threats, ensuring robust security measures are in place, and responding to any breaches with appropriate countermeasures.
What you'll do
Event analysis: analyze security events and incidents to identify the root cause and impact on the organization, utilizing a variety of tools (mainly the SIEM).
Incident classification: classify incidents as per established guidelines.
Containment and eradication: follow the organization's playbooks for reviewing incidents and implement measures to contain and eradicate threats, ensuring that the organization's systems and data are secured.
Recovery: when applicable, help in the recovery efforts post-incident to restore systems and services to operational status.
Lessons learned: participate in post-incident reviews to document lessons learned and improve future incident response efforts.
Secure Operations Centre Collaboration: work closely with the SOC to monitor and respond to incidents, leveraging the in-house expertise and technologies.
Minimum Qualifications
Currently living in the UK;
At least 2 years of experience with security incident response;
Experience with Incident Report Writing; Threat Analysis; Security Incident Handling;
Experience with Log Parsing; SIEM; MITRE Framework;
Desirable experience with scripting and automation; Reverse engineering; Malware analysis;
Core Benefits
Annual leaves
Ability to buy/encash/carry over annual leave
Heating Allowance
Internet subsidy
Health Insurance
Dental care
Life Insurance
Pension Contributions
Thanks Ben – Health & Wellbeing Virtual Card
Thanks Ben – Work from Home Virtual Card
Thanks Ben – Optical Plan Virtual Card
Technologies that we apply in our day
AWS
SIEM
Information Security Analyst II, Blue Team
To see similar active jobs please follow this link: Remote Development jobs
Summary
The Blue Team is responsible for defending the organisation's networks, systems, and applications by identifying and mitigating threats, ensuring robust security measures are in place, and responding to any breaches with appropriate countermeasures.
What you'll do
Event analysis: analyze security events and incidents to identify the root cause and impact on the organization, utilizing a variety of tools (mainly the SIEM).
Incident classification: classify incidents as per established guidelines.
Containment and eradication: follow the organization's playbooks for reviewing incidents and implement measures to contain and eradicate threats, ensuring that the organization's systems and data are secured.
Recovery: when applicable, help in the recovery efforts post-incident to restore systems and services to operational status.
Lessons learned: participate in post-incident reviews to document lessons learned and improve future incident response efforts.
Secure Operations Centre Collaboration: work closely with the SOC to monitor and respond to incidents, leveraging the in-house expertise and technologies.
Minimum Qualifications
Currently living in the UK;
At least 2 years of experience with security incident response;
Experience with Incident Report Writing; Threat Analysis; Security Incident Handling;
Experience with Log Parsing; SIEM; MITRE Framework;
Desirable experience with scripting and automation; Reverse engineering; Malware analysis;
Core Benefits
Annual leaves
Ability to buy/encash/carry over annual leave
Heating Allowance
Internet subsidy
Health Insurance
Dental care
Life Insurance
Pension Contributions
Thanks Ben – Health & Wellbeing Virtual Card
Thanks Ben – Work from Home Virtual Card
Thanks Ben – Optical Plan Virtual Card
Technologies that we apply in our day
AWS
SIEM