* Work closely with the Global Security Operations Centre (GSOC), and Cyber Threat Intelligence teams to build new tailored security detections.
* Build mechanisms that combine multiple detection signals to create higher fidelity threat detections
* Design, build, and deploy automation to scale system and infrastructure vulnerability and inventory discovery efforts across numerous endpoints, assets, and locations
* Identify trends and build observability into areas that need it
* Consult on technology initiatives to provide industry best-practice as a baseline for security observability and detections
* Analyse business impact and exposure based on emerging security threats, vulnerabilities, and risks
* Participate in the implementation of security controls and measures to protect our network and systems
* Stay current with emerging security threats and technologies
* Perform risk analysis to find any vulnerability that can have an impact on the company
* Generate improvement strategies for better company security
We are a company committed to creating diverse and inclusive environments where people can bring their full, authentic selves to work every day. We are an equal opportunity/affirmative action employer that believes everyone matters. Qualified candidates will receive consideration for employment regardless of their race, color, ethnicity, religion, sex (including pregnancy), sexual orientation, gender identity and expression, marital status, national origin, ancestry, genetic factors, age, disability, protected veteran status, military or uniformed service member status, or any other status or characteristic protected by applicable laws, regulations, and ordinances. If you need assistance and/or a reasonable accommodation due to a disability during the application or recruiting process, please send a request to
HR@insightglobal.com.
To learn more about how we collect, keep, and process your private information, please review Insight Global's Workforce Privacy Policy:
https://insightglobal.com/workforce-privacy-policy/ .
* Knowledge of security tools and technologies such as SIEM, IDS/IPS, firewalls, and antivirus software
* Data collection methods and best practices
* Ability to tune and measure detection rules
* Competency and understanding in CI/CD pipeline
* Familiar with Detection-as-code
* Understanding of security frameworks such as NIST, ISO 27001, and PCI DSS
* Familiarity with scripting languages such as Python or PowerShell
* Analytical and problem-solving skills
* Excellent written and verbal communication skills
* Knowledge of network protocols, operating systems, and applications
* Knowledge of malware analysis and forensic techniques
* Ability to analyze and interpret security logs and other data
* Ability to provide guidance and support to junior SOC analysts
Familiarity with cloud security and virtualization technologies
* Proven experience in Information Security or similar discipline
* Demonstrable experience of Linux/Unix, Mac and Windows system analysis experience
* Cyber Threat Intelligence knowledge and/or experience
* Familiarity with the Threat Intelligence lifecycle
* Experience writing strategic threat reports
* Experience working in a large enterprise and management of a wide range of security tools such as IDS/IPS (network and host), advanced anti-malware (network and endpoint), DLP, encryption, antivirus, firewalls, identity management, NAC, etc.
* Experience operating in at least one public cloud platform (AWS, GCP, Azure) and other cloud native technologies (Kubernetes, Docker, Terraform)
* Familiarity with security standards NIST Cyber Security Framework, NIST SP800-61 R2 and ISO/IEC 27035
* Relevant certifications such as Security+, Server+, Linux+ GSEC, GIAC, GCIH, or CISM could be advantageous
* Deep understanding of security threats, vulnerabilities
* Manage relationships with business partners, management, vendors, and external parties
* In-depth technical knowledge of Windows and Unix/Linux based operating systems
* Strong organisational, multi-tasking, and time-management skills
* Analytical and strategic mindset to overcome obstacles and solve complex problems
* Strong organisational skills with the ability to complete tasks assigned in a timely manner
* Ability to develop team projects and execute strategic initiatives to completion
* Excellent English written and verbal communication skills, additional languages is a plus
Excellent customer service skills required
Benefit packages for this role will start on the 31st day of employment and include medical, dental, and vision insurance, as well as HSA, FSA, and DCFSA account options, and 401k retirement account access with employer matching. Employees in this role are also entitled to paid sick leave and/or other paid time off as provided by applicable law.