We are currently looking for a Security Analyst for our client, a leading IT company in Dublin.
Responsibilities
What we will do for you
On a daily basis, you'll find the most malicious attacker activity the Internet has to offer
Let you scour systems and analyze tons of network traffic looking for attacker presence
Be Challenged to evolve how we detect and respond to attackers by authoring new and innovative Indicators of Compromise
Expose you to some of the most exciting and cutting edge techniques to find evil
Training and continuous coaching and mentoring to grow your technical and professional skills like no one else
Work with a team of brilliant people that you can learn from and build lasting relationships with
Develop an understanding of your aspirations and provide opportunities that we believe will get you there
Inspiration to stretch your performance by allowing you to tackle seemingly impossible problems
Encouragement challenge the status quo, think creatively, and innovate –make us better
An environment of trust and camaraderie, where you can speak freely about your ideas
A platform from which you can make a real impact against the bad guys
Develop an understanding of, and be flexible to, your needs
What you can do for us
Get your toolbox out and dive deep into systems to help us identify and eradicate attackers
Use your insanely keen network analysis skills to find evil on the wire
Define relationships between seemingly unrelated events through deductive reasoning
Come up with ways to do things faster, better and more effectively while maintaining a laser focus on quality
Be fanatical about delighting our customers
Be honest, transparent and genuine with our customers and your peers
Make sure you have fun – lots of it
Help us protect the world
Work hard, but smart; balance your work and life
What you can bring with you
The ability to analyze event and systems logs, perform forensic analysis, analyze malware, and other incident response related data, as needed.
Deep understanding of incident response best practices and processes
Familiarity with intrusion detection systems (e.g., snort) and tools (e.g., tcpdump, Wireshark).
Knowledge of attack vectors, threat tactics and attacker techniques.
Familiarity with network architecture and security infrastructure placement.
Understanding of Windows operating systems and command line tools.
A solid foundation in networking fundamentals, with a deep understanding of TCP/IP and other core protocols.
Knowledge of network based services and client/server applications.
Your bachelors degree – or a very convincing argument.
Degree in computer science, or related discipline
Experience working on a mission critical security operations team, preferably 24x7.
Exemplary communication and interpersonal skill.
Ability to document and explain technical details clearly and concisely.
A willingness to be challenged and a strong desire to learn.
An open mind and an appetite for excellence
Network
Wireshark
Understand a signature
Context - inbound vs outbound (webshells), DNS servers vs HTTP proxy
Knowing the Internet - identifying something as legitimate vs malicious
Intel querying vs OSINT
Knowledge of protocols - SMB, HTTP Proxy, DNS, ICMP
Netflow Analysis
Perform queries to gain additional context
Understanding ports, sessions length, direction
DNS & HTTP
Collect and analyse DNS/HTTP logs for additional context
Signatures
Identify issues with signatures and propose improvements
Hit Review
Understand a signature
IOCs intent - what it's looking for, what it hit on, caveats
Context - malware, decoy, side-loaded DLL (legit binary), tools, methodology
Triaging
Collecting forensic information to determine TP vs FP
Malware triaging - assessing MTA and performing dynamic analysis in VM
Signatures
Identify issues with signatures and propose improvements
Live Response
Build LR timelines under supervision
Threat Intel
Understand how malware and tools are used by the threat actors
Apply now
Position: Security analyst
Last Name
First Name
Email
Phone
Your Message
Upload your CV
Accepted file types: PDF, DOC, DOCX, ODT, ZIP
Maximum file size: 5 MB
#J-18808-Ljbffr