Beschreibung
Für unseren Kunden aus Essen suchen wir ab Mitte Mai einen Cyber Threat Intelligence Analyst (m/w/d).Aufgaben:
- Enhance and improve the Security Advisory Notifications process for cyber security and vulnerability alerts
- Identify a central repository for all applications in order to ensure security advisories are only produced that are relevant to customer and determine how this process can be automated and implemented.
- Work closely with the IT Security Vulnerability Manager and IT Security SIEM Manager to enhance and improve all processes that need to integrate the Threat Intelligence processes
- Responsible for processing, organising and analysing incident indicators retrieved from the environment as well as correlating said indicators to various intelligence sources
- Responsible for maintaining awareness of the global threat landscape and review complex, technical threat data and enrich it with contextual information in order to produce a comprehensive intelligence reports for key stakeholders
- Process, organise, analyse and assist in contextualisation of incident indicators
- Conduct technical analysis and reporting that will influence proactive detection logic and methodologies that can implemented within the IT SOC
- Regularly collaborate with Incident Response team, Security Operations Centre as well as and Digital Forensics when responding to incidents and assist in investigations
- Make recommendations for process improvements
- Other duties as assigned
requirements:
- A high level of understanding of cyber security principles, practices and tools
- Experience with commercial SIEM and threat intelligence platforms
- Efficient research methodologies
- Operational experience in leveraging the intelligence lifecycle and its application to cyber threat analysis
- Intimate understanding and familiarity with the intelligence cycle frameworks including Diamond Model, Cyber Kill Chain, and Mitre ATT&CK
- Knowledge and ability to identify threat actor attack methods and track their developments
- Extensive experience conveying complex information in simple, succinct explanations
- Exceptional attention to detail
- Experience in Cyber Threat Intelligence
- Experience conducting threat modelling
- Good knowledge of utilities and threat impacting the energy sector
- Strong Report writing skills
- Good understanding of vulnerability frameworks and advisories (NVD , CVE)
- Understanding and familiarity with cloud security and concepts or knowledge of static and/or dynamic malware analysis
- Ability to create documentation
- Ability to resolve problems independently and understand the escalation procedure
- Knowledge and experience with Windows, Unix/Linux operating systems
-Experience working with an MSSP or Third Party Provider
- Good understanding of Firewalls and Network Security
- Understanding of network protocols
Required Qualifications:
- Bachelors or Master's degree in computer science, computer engineering, digital forensics, cyber security, telecommunications, information assurance or security studies
- Certified Ethical Hacker (CEH)
- Offensive Security Certified Professional (OSCP)
- Certified Information Systems Security Professional (CISSP)
Beginn: Mitte Mai
Dauer: Ende August + Option Ende 2021
Ort: Essen & Remote
Wir freuen uns über ihre Bewerbung unter https://www.percision.de/projekt/5936
Freundliche Grüße
Sebastian Leja
Teamleiter
Fon
Web https://www.percision.de
percision services GmbH
Agrippinawerft 26 (2.Etage)
50678 Köln