Senior Security Analyst
budapest
Ideiglenes 3-5 év szakmai tapasztalat Hibrid
At our multinational Partner, you will be responsible for the detailed investigation of the systems that raise alerts and those that are escalated by the analysts and will recommend or initiate appropriate courses of action to support overall Readiness requirements.Tasks: - Monitoring systems and processes security events and incidents using established processes,
- Performing deep analysis of events and incidents escalated by security analysts,
- Delegating the investigation of detected events to security analysts,
- Determining whether critical systems and data are affected and initiates or recommends corrective actions,
- Maintaining and updates detection rulesets following established processes,
- Maintaining and updating an incident log and a lessons learned,
- Categorizing and reports incidents following established procedures,
- Mentoring and supporting junior-mid level security analysts.
Requirements: - 2+ years of experience in working as a network security analyst in a security operations center,
- Extensive experience with all phases of incident response,
- Extensive experience in the inner-workings of Operating systems (Windows and Linux-based),
- Extensive knowledge of network communications and routing protocols (e.g. TCP, UDP, ICMP, BGP, MPLS, etc.) and common internet applications and standards (e.g. SMTP, DNS, DHCP, SQL, HTTP, HTTPS, etc.),
- Experience in programming and/or scripting languages,
- Extensive experience using SIEM applications,
- Experience managing and prioritizing large volume of alerts,
- Experience managing, analyzing, editing and crafting Intrusion Detection rules,
- Practical experience in Information Security concepts and technology,
- Excellent verbal and written communications skills in English.
Advantages: - GIAC GCIH Certification,
- GIAC GCIA Certification,
- Microsoft Certified Windows Server Administrator (or equivalent Windows Certification),
- Redhat Certified Systems Administrator (or equivalent Linux certification),
- CISSP / CISM or equivalent certification.