Cyber Security Operations Analyst

Role : Cyber Security Operations Analyst

Location : San Jose CA (Hybrid)

Duration : 12 Months

Client : Samsung Semiconductor

Note: Hands on experience with Netskope CASB is must.

Description

Cyber Security Operations Analyst is responsible for safeguarding information system assets by identifying and solving potential and actual security problems to ensure the confidentiality integrity and availability of IT resources and their associated data

Location: Hybrid working onsite at our San Jose headquarter 3 days per week with the flexibility to work remotely the remainder of your time

• Analyze and track the cyber threat landscape including identifying and investigating cyber threats actors and their activities to enhance cyber security posture.
• Perform security monitoring security event triage and incident response using SIEM and CASB solutions. Analyze alert patterns to provide recommendations for policy improvement.
• Create content (queries dashboards reports etc.) in security tools like Splunk SIEM Netskope CASB DLP & others.
• Respond to daily security incidents following established incident response methodology.
• Identify monitor and present data points which includes daily dashboards metrics and reporting.
• Ensure continuous improvement of security operations processes and procedures.
• Create and maintain technical documentation for existing security tools and solutions.
• Conduct incident response activities as appropriate including triage root cause analysis kill chain analysis escalations notifications and communication with the relevant parties.
• Perform threat hunting across the network for proactive detection of anomalous events and possible intrusions/attacks.
• Work on Cyber Security projects providing technical support and guidance to IT and other teams.
• Identify gaps in IT infrastructure by providing insight into advanced threat attackers TTPs
• Enhance department and organization reputation by delivering quality results and exploring opportunities to increase value and raise awareness of Cyber Security Program.
• Balance concurrent projects with ongoing operational responsibilities.
• Stay informed on recent security trends and vulnerabilities and proactively apply this knowledge to reduce risk.

Requirements

• What You Bring 2 years of work experience in Security Operations Threat Intelligence or Incident Response.
• Bachelors degree in computer science Information Systems cyber security or relevant field.
• Handson experience with Splunk Enterprise Security Netskope CASB solution & Enterprise Immunity Solutions is preferred.
• Extensive knowledge in two or more of the following Security tools: SIEM CASB Advanced DLP SOAR EDR Email Gateway Enterprise Immune System.
• Relevant security certifications or vendor certifications in the above security tools is preferred.
• Understanding of TCP/IP networking and network services such as DNS SMTP DHCP etc.
• Hands on experience with networking commands or any scripting language in existing role.
• Advanced understanding of business processes internal control risk management IT controls audit and related standards.
• Energetic analytical and keen problem solver who works well in a collaborative environment.
• Strong ability to manage multiple demands with a strong sense of accountability and urgency.
• Youre inclusive adapting your style to the situation and diverse global norms of our people.
• An avid learner you approach challenges with curiosity and resilience seeking data to help build understanding.
• Youre collaborative building relationships humbly offering support and openly welcoming approaches.
• Innovative and creative you proactively explore new ideas and adapt quickly to change.