Cyber Security Analyst (Weekend support) | Warsaw

Warszawa Polonia ICT y Sistemas de información
Atención! Oferta expiró

Descripción de la Organización

Intertek is a leading Total Quality Assurance provider to industries worldwide. Our network of more than 1,000 laboratories and offices and over 46,000 people in more than 100 countries, delivers innovative and bespoke Assurance, Testing, Inspection and Certification solutions for our customers’ operations and supply chains.

Puesto

Intertek is looking for a computing enthusiast to join our global Cyber Security team. This is an interesting and varied role. This is a great opportunity to provide operational support for the Cyber Security technologies and processes. You will be trained to support several security solutions, with focus on the email security and network security solutions. You will be the primary point of contact for the incident response activities during the weekends.


If you have knowledge of Windows, incident response frameworks and security event analysis, and you are thirsty for knowledge related with Cyber Security, then this is a fantastic opportunity. We operate in a distributed SOC environment, following the 9-5 shift model / 7 days per week. For this position, the 5 days per week can be adjusted to the applicant preference but must include Saturdays and Sundays. This role allows you to work up to 3 days a week remotely.



Available benefits:

  • Access to the best-in-class security training platform
  • Eligibility for security certification regularly
  • Medical cover package
  • Multisport

Job Purpose:

  • Take part in the incident response activities within the region
  • Perform security event analysis as part of the daily responsibilities
  • Support the security solutions during the EMEA shift
  • Support the GRC activities during the EMEA shift, becoming a Regional Lead.
  • Become an SME and manage a security technology and incident response process

Tasks

  • Support the best-in-class security technologies
  • Effective security event analysis and pattern identification.
  • Continuous, active monitoring of global systems
  • Identify possible malware risks and help resolve any current system infections
  • Vulnerability management framework
  • Providing support for process improvement
  • Develop content for cyber defence tools.
  • Document and escalate incidents (including event’s history, status, and potential impact for further action) that may cause ongoing and immediate impact to the environment.
  • Use cyber defence tools for continual monitoring and analysis of system activity to identify malicious activity.
  • Recommend computing environment vulnerability corrections.
  • Isolate and remove malware.
  • Assess adequate access controls based on principles of least privilege and need-to-know.
  • Monitor external data sources (e.g., cyber defence vendor sites, Computer Emergency Response Teams, Security Focus) to maintain currency of cyber defence threat condition and determine which security issues may have an impact on the enterprise.
  • Provides cybersecurity recommendations to leadership based on significant threats and vulnerabilities.
  • Work with stakeholders to resolve computer security incidents and vulnerability compliance.
  • Provide advice and input for Disaster Recovery, Contingency, and Continuity of Operations Plans.
  • Coordinate and provide expert technical support to enterprise-wide cyber defence technicians to resolve cyber defence incidents.
  • Coordinate incident response functions.
  • Provide technical summary of findings in accordance with established reporting procedures.
  • Perform timeline analysis.
  • Capture and analyse network traffic associated with malicious activities using network monitoring tools

Requisitos

  • Experience with email, network or endpoint security solutions is a plus
  • Knowledge of IT security controls
  • Bachelor’s degree within the IT field or IT background required
  • Cyber Security related experience: 0-2 years
  • One of Industry certifications: CCNA, CompTIA Security+ or an industry recongised incident response certification is an advantage
  • Knowledge in security event analysis is a plus
  • Experience with Windows and Linux is a plus
  • Familiarity with common and advanced vulnerabilities, exploits and attacks in Windows/Linux operating systems and web-based applications is a plus
  • Familiarity with SIEM systems is a plus

Otra información

Job context:

Environment: Local, regional and global remit.

Framework: Cyber security architecture and risk management frameworks

Support hours: 40 hours (9-17) / 5 days per week. 5 days include Saturdays and Sundays to accommodate the weekend shift.


Key relationships:

Cyber Security Manager: direct management line, weekly progress tracking sessions

Project Managers: Regular meetings, determined by the project leadership team.

Technical staff: Regular informal discussions.