What are the responsibilities and job description for the Cyber Security Analyst with Banking position at Msquare Technologies?
Job Details
Analyze malware samples to understands its behavior, assess threat actor motivations, and extract indicators of compromise (IOCs)
Act upon threat intelligence provided by Cyber Threat Intelligence function
Respond to Information Security related queries
Perform cyber threat hunting for the detection of advanced threats
Mentor and train junior analysts to enhance the overall technical skillset of the SOC, establish analytic discipline and critical thinking, and promote greater curiosity
thinking "outside the box"
Expand, tune, and enhance rulesets SIEM, IDS, etc.
to identify security incidents and reduce false positives
Investigate IOCs provided by Cyber Threat Intelligence or the Cyber Hunter function
Handling incidents encompassing multiple functions: detection and identification, incident triage, network and host-based forensic analysis, root-cause analysis, containment, system hardening, etc.
We are involved in different type of information security incidents (phishing, malware, denial of service, inappropriate usage and unauthorized access).
We are a young and empowered team who always drives for continuous improvement.
Your experience and skills You have:
A natural ability to solve complex issues through analytical and lateral thinking
Performed proactive hunting; have detected anomalous and potentially malicious activity in log data
Master's degree in a STEM field with 3 years of relevant experience;
Bachelor's degree in a STEM field with 5 years of relevant experience; or 9 years of incident response, malware analysis, and threat detection
Hands-on experience with content development and use-case management
Proficiency in log parsing and data analysis (REGEX is a must)
Proficiency in x86 assembly language, disassemblers, and debuggers
Hands-on experience with Volatility or similar malware analysis/forensic tools
Proficiency in static and dynamic malware analysis
Demonstrable proficiency in code de-obfuscation and anti-forensic techniques
Fluency in at least one compiled language (C, C , etc.) and one scripting language (Python, Perl, etc.)
A firm understanding of the TCP/IP stack and networking (knowing the difference TCP and UDP is not enough)
Moderate to advanced understanding of DDoS attacks and mitigation techniques
Fluent in English
Security Certifications GNFA, GCFE, GPEN, and GREM OSCP and OSCE
