Sajnáljuk, de a hirdető cég már megszüntette az állásajánlat közzétételét a honlapunkon.
Megértését köszönjük.
Mutasd a hasonló álláshirdetéseket
Megértését köszönjük.
Mutasd a hasonló álláshirdetéseket
Sr. Security Analyst (Managed Security Services Operations)
DIEBOLD NIXDORF
Place of work
Remote work
Remote work
Contract type
full-time
full-time
Start date
ihned
ihned
Wage (gross)
1 900 EUR/monthMinimum salary from 1900 EUR
1 900 EUR/monthMinimum salary from 1900 EUR
Information about the position
Job description, responsibilities and duties
Position Overview
This role will perform data analysis, incident response, investigative analysis, and research on existing and emerging cyber threats in the financial sector. The position focuses on data analytics leveraging your understanding of the tactics, techniques, and procedures employed by advanced threats combined with intelligence from multiple sources. Additionally, you will provide reporting and briefings to customers in order to maintain appropriate levels of situational awareness.
You are responsible for
• Support a 24/7/365 Security Operations Center and monitor security tools
• Provide Tier 2 analysis response to security incidents
• Respond to cybersecurity events and incidents caused by internal and external threats to our clients, coordinate response activities with various stakeholders, and recommend mitigation strategies
• Handle incidents as defined in playbooks and standard operating procedures, and advise on remediation actions
• Perform deep-dive incident analysis by correlating data from various sources and determine if a critical system or data set is affected
• Identify and design use case algorithms
• Assist customers in implementing sound and secure logging practices, deployment of agents and sensors
• Leverage advanced knowledge of security operations, cyber security tools, intrusion detection, and secured networks to integrate with the SIEM platform
• Triage emerging threats to protect assets and information in client environments.
• Partner with cross-functional technical teams to share expertise, research threats, and implement solutions
• Present reports and produce communications, newsletters and other forms of communication that may be both internal and client facing, to include leadership and executive management
• Draft root cause analysis reports and recommendations after cybersecurity incidents
• Identify risk areas that will require vulnerability prevention
• Stay current with security technologies and make recommendations for use based on business value
Qualifications
• At least 3 years’ experience working with IBM QRadar
• At least 2 years’ experience working in a Security Operations Center
• At least 2 years’ experience working in Managed Security Services environment
• SIEM administration, configuration, and optimization experience with platforms such as AlienVault, IBM QRadar, ArcSight or Splunk
• Threat hunting experience
• Malware reverse engineering and outbreak management experience
• Experience participating in and acting as an escalation point for complex network threat investigations
• Linux command line experience
• Experience and knowledge of public cloud environments, specifically AWS and Azure
• Knowledge of regular expressions and data normalization
• Experience configuring, integrating, and monitoring endpoint protection solutions such as Symantec Endpoint Protection, Carbon Black, or CrowdStrike
• Understanding of network protocols coupled with experience with web proxies, web application firewalls, and vulnerability assessment tools.
• Experience working in a team-oriented, collaborative environment with a high level of analytical and problem-solving abilities
• Positive attitude with strong oral and written communication skills
• Knowledge of IP networking and network security including Intrusion Detection
• Familiarity with common network vulnerability/penetration testing tools
• Familiarity with service management software such as SMAX
• Some experience with system hardening guidance and tools
• Experience on an incident response team performing Tier I/II initial incident triage, desired
• Experience supporting clients and serving as a technical advisor
• Familiarity with the financial Sector a plus
• Ability to anticipate and respond to changing priorities and operate effectively in a dynamic demand-based environment requiring flexibility and responsiveness to client matters and needs
Preferred Qualifications
• BS/BA in Information Security, Computer Science or related engineering discipline
• Financial services industry experience is a plus
This role will perform data analysis, incident response, investigative analysis, and research on existing and emerging cyber threats in the financial sector. The position focuses on data analytics leveraging your understanding of the tactics, techniques, and procedures employed by advanced threats combined with intelligence from multiple sources. Additionally, you will provide reporting and briefings to customers in order to maintain appropriate levels of situational awareness.
You are responsible for
• Support a 24/7/365 Security Operations Center and monitor security tools
• Provide Tier 2 analysis response to security incidents
• Respond to cybersecurity events and incidents caused by internal and external threats to our clients, coordinate response activities with various stakeholders, and recommend mitigation strategies
• Handle incidents as defined in playbooks and standard operating procedures, and advise on remediation actions
• Perform deep-dive incident analysis by correlating data from various sources and determine if a critical system or data set is affected
• Identify and design use case algorithms
• Assist customers in implementing sound and secure logging practices, deployment of agents and sensors
• Leverage advanced knowledge of security operations, cyber security tools, intrusion detection, and secured networks to integrate with the SIEM platform
• Triage emerging threats to protect assets and information in client environments.
• Partner with cross-functional technical teams to share expertise, research threats, and implement solutions
• Present reports and produce communications, newsletters and other forms of communication that may be both internal and client facing, to include leadership and executive management
• Draft root cause analysis reports and recommendations after cybersecurity incidents
• Identify risk areas that will require vulnerability prevention
• Stay current with security technologies and make recommendations for use based on business value
Qualifications
• At least 3 years’ experience working with IBM QRadar
• At least 2 years’ experience working in a Security Operations Center
• At least 2 years’ experience working in Managed Security Services environment
• SIEM administration, configuration, and optimization experience with platforms such as AlienVault, IBM QRadar, ArcSight or Splunk
• Threat hunting experience
• Malware reverse engineering and outbreak management experience
• Experience participating in and acting as an escalation point for complex network threat investigations
• Linux command line experience
• Experience and knowledge of public cloud environments, specifically AWS and Azure
• Knowledge of regular expressions and data normalization
• Experience configuring, integrating, and monitoring endpoint protection solutions such as Symantec Endpoint Protection, Carbon Black, or CrowdStrike
• Understanding of network protocols coupled with experience with web proxies, web application firewalls, and vulnerability assessment tools.
• Experience working in a team-oriented, collaborative environment with a high level of analytical and problem-solving abilities
• Positive attitude with strong oral and written communication skills
• Knowledge of IP networking and network security including Intrusion Detection
• Familiarity with common network vulnerability/penetration testing tools
• Familiarity with service management software such as SMAX
• Some experience with system hardening guidance and tools
• Experience on an incident response team performing Tier I/II initial incident triage, desired
• Experience supporting clients and serving as a technical advisor
• Familiarity with the financial Sector a plus
• Ability to anticipate and respond to changing priorities and operate effectively in a dynamic demand-based environment requiring flexibility and responsiveness to client matters and needs
Preferred Qualifications
• BS/BA in Information Security, Computer Science or related engineering discipline
• Financial services industry experience is a plus
Employee perks, benefits
• Public Transport contribution
• Pension contribution possibility
• Multisport card
• Culture Pass Entertainment voucher
• Variable part of the salary
• Career path building possibilities due to start up project of DN in Košice
• 25 days of annual leave (vacation days)
• Mobile phone also for private use
• Home office possibility
• Flexible working hours
• Other development possibilities: DN Academy, buddy program, language certification, ITIL, project training, technology certificates, etc.
• Social Event Support
• Health and Sport Activities
• Pension contribution possibility
• Multisport card
• Culture Pass Entertainment voucher
• Variable part of the salary
• Career path building possibilities due to start up project of DN in Košice
• 25 days of annual leave (vacation days)
• Mobile phone also for private use
• Home office possibility
• Flexible working hours
• Other development possibilities: DN Academy, buddy program, language certification, ITIL, project training, technology certificates, etc.
• Social Event Support
• Health and Sport Activities
Requirements for the employee
Candidates with education suit the position
University education (Bachelor's degree)
University education (Master's degree)
University education (Master's degree)
Language skills
Slovak - Intermediate (B1) and English - Advanced (C1)
Other knowledge
IBM QRadar - Advanced
Security Operations - Expert
Security Operations - Expert
Number of years of experience
2
Advertiser
Brief description of the company
Expect more. Connect more. Be more at Diebold Nixdorf. Our teams automate, digitize, and transform the way more than 75 million people around the globe bank and shop in this hyper-connected, consumer-centric world. Join us in connecting people to commerce in this vital, rewarding role.
We’re the world leader in connected commerce, with proven expertise and comprehensive portfolios in cutting-edge systems technology, multi-vendor software and service excellence for both financial and retail customers. Diebold Nixdorf employs approximately 25,000 employees in more than 130 countries around the world. We are publicly traded on the New York Stock Exchange under the symbol “DBD.”
Specialties: financial and retail self-service solutions, services, security solutions, software, cash management, branch and store transformation.
We’re the world leader in connected commerce, with proven expertise and comprehensive portfolios in cutting-edge systems technology, multi-vendor software and service excellence for both financial and retail customers. Diebold Nixdorf employs approximately 25,000 employees in more than 130 countries around the world. We are publicly traded on the New York Stock Exchange under the symbol “DBD.”
Specialties: financial and retail self-service solutions, services, security solutions, software, cash management, branch and store transformation.
Number of employees
250-499 employees
ID: 3966327
Megjelentetés dátuma: 13.10.2020
2020-10-13
Régió: Remote work Pozíció: IT Security Specialist Cég: DIEBOLD NIXDORF
Alapbér (bruttó): 1 900 EUR/month