CareerFinders, on behalf of our client, an expanding Investment Firm with offices in Limassol, we are seeking to recruit a Senior SOC Analyst (Security Operations Centre) to join their expanding team of professionals. The successful applicant will perform key security service activities including identification of assets, scanning for infrastructure and application vulnerabilities, security penetration testing and security monitoring.
In this role you will perform key security services activities including identification of assets, scanning for infrastructure and application vulnerabilities, security penetration testing, and security monitoring. In addition, you will perform investigations and perform analysis of events in order to thwart internal and external threats to the environment. You will collaborate on an ongoing basis to support detection, triage, incident analysis, containment, remediation and reporting of vulnerabilities, events, and escalated incidents while coordinating business priorities, emerging and actual threats and best practices to ensure the confidentiality, integrity and availability of the information assets.
Identify and remediate infrastructure and application vulnerabilities identified in continuous scanning and regular penetration testing exercises and assist with risk prioritization.
Analyze and respond to security threats from Firewall (FW), Intrusion Detection Systems (IDS), Intrusion Prevention Systems (IPS), Antivirus (AV), Endpoint Detection and Response (EDR), Network Detection and Response (NDR), Email Security, Cloud Security, and other security threat data sources.
Respond in a timely manner (within documented SLA) with thorough and concise analysis and recommended actions.
Assist in establishing a mature and optimized Security Operations Center discipline to support managed security services focused on vulnerability and security information event management engagements.
Document actions in cases to effectively communicate information to internal and external stakeholders as well has for historical retrieval.
Adhere to Equiti Group policies, procedures, and security practices.
Resolve problems independently and understand escalation procedures.
Conduct scanning and monitoring activities to provide in depth visibility into potential known and unknown vulnerabilities and threats that may pose risk to the Equiti Group environments.
Participate in security incidents and act as the technical Subject Matter Expert during significant security incidents.
Utilize analytics to identify potential vulnerabilities and threats to the environment.
Detect, respond, mitigate, and report on cyber threats/incidents that may impact the environment.
Collaborate with NOC, ITOC teams on matters related to security scanning and monitoring across a global footprint.
Conduct operations surrounding cyber security incident response technologies including network logging and forensics, security information and event management tools, security analytics platforms, log search technologies, and host based forensics as applicable.
Act as an internal information security consultant to the business and technology units, advising on risks, threats and control practices related to SOC - Assurance and Response.
Assist in development and knowledge sharing within the team.
Assist in security console tuning.
Perform threat hunts that target known vulnerabilities, threats and other attack vectors.
Desire to work in SOC, Vulnerability Management, Security Information Event Management, Threat Hunt, or Threat Intel team- on a long term basis.
Minimum of a bachelor's degree or equivalent experience or technical certifications.
Financial services technology background.
Experience in Cyber Security is a must.
Experience with Python, PowerShell, and API programming is a plus.
Solid Knowledge of network/endpoint forensics, malware analysis, reverse engineering.
Practical experience with TCP/IP networking.
Working knowledge of Routing and Access Control Devices.
Experience with Linux, Windows, iOS, and Network Operating Systems.
Experience with Endpoint and Network Detection Response technologies.
Experience with Cloud Security configuration best practices.
Desire to pursue industry related certifications: Security+, C|EH, GSEC, etc.
Critical thinking and problem-solving skills.
Passion for information security.
Strong interpersonal and organization skills.
Experience with Vulnerability Management technologies.
Experience with Security Information Event Management technologies.