Cyber Security Analyst I

POSITION PURPOSE:

Cyber security analysts are responsible for managing, monitoring, troubleshooting and protecting both the security of our internal environment and that of our customers. They will perform any steps necessary to that end. They will design, implement, monitor, and evaluate the security systems that protect an organization’s computer systems and data. As a Cyber Security Analyst, you will monitor the computer networks under management for security issues, install security software, and document any security issues you identify. This role also acts as the first point of contact for customer related security incidents and questions.

ESSENTIAL JOB DUTIES AND RESPONSIBILITIES:

Monitor computer networks for security issues and respond accordingly, including:

• Interact with customers by phone, chat, or trouble ticket on any customer facing security issues.
• Investigate, document and assess security breaches and other cyber security incidents.
• Install security measures and operate software to protect systems and information infrastructure, including firewalls and data encryption programs.
• Prepare security reports for customer business insights reviews to support our guidance level agreements initiatives.
• Identify and fix detected vulnerabilities to maintain a high-security standard.
• Work with other technology teams and customers to perform tests and uncover network or other vulnerabilities.
• May be relied upon as a technical point of contact during Escalated Events relating to security.
• Review, investigate and respond to any external “abuse” complaints coming from our IP space.
• Develop best practices for IT security.
• Research security enhancements and make recommendations to management.
• Handle escalated internal or customer security issues from support or other operations team.
• Takes part in any security-oriented projects or critical initiatives.
• Stay up to date on information technology & security news, trends and standards.
• Deliver an exceptional customer experience every day.
• Other duties as identified or assigned.
• Keep us and our customers free from security incidents but respond capably when one occurs.
• Contribute to continually improving our detection of security threats.
• Provide valuable insights and visibility around security incidents to our customers.

o Creating/Managing firewall rules

o Managing anti-virus endpoint tools

o Performing event correlation analysis on potential threats identified through our SIEM

o Configuring/Managing log management

o Configuring/Managing file integrity monitoring

o Performing vulnerability scans and remediation of identified risks

o The methodology & analysis of identifying compromised servers

o Performing rule tuning in our SIEM for improved detection capabilities

DESIRED ROLE OUTCOMES:

• Keep us and our customers free from security incidents but respond capably when one occurs.
• Contribute to continually improving our detection of security threats.
• Provide valuable insights and visibility around security incidents to our customers.

Requirements

DESIRED MINIMUM QUALIFICATIONS:

• Must have technical troubleshooting and problem-solving skills.
• Understanding of network management principles.
• Min 2 years experience in systems administration of Windows and Linux based operating systems.
• Good written and spoken English language.
• Working knowledge of Palo Alto firewalls, Juniper networking equipment, LogRhythym SIEM solution or similar technologies.
• Understanding of firewalls, proxies, SIEM, antivirus, penetration testing, vulnerability scans and IDS/IPS concepts.
• Ability to identify and mitigate network vulnerabilities and explain how to avoid them.
• Understanding of patch management with the ability to deploy patches in a timely manner while understanding business impact.
• Ability to learn and communicate technical information to non-technical people.
• Must have excellent written & oral communication skills, and strong interpersonal skills.
• Must emulate the Ntirety Values in all that they do.
• Bachelor's degree in computer science or related field or equivalent experience.

PREFERRED SKILLS:

• Additional certifications in security related disciplines (eg: Security+, CEH, CISSP, etc.)

Benefits

What We Offer• Competitive remuneration package and company bonus scheme

• Food vouchers 175 BGN/month• 25 days paid holidays annually to help nurture work-life symbiosis• Work from office• Free transportation for the night shifts (if work from office)• Additional Health Insurance package, including extensive medical, dental & vision care• Multisport Card• Free massages at the office by a professional massage therapist• Corporate events and various social committee activities• Free fruit and catering in the office as well as a great variety of snacks and drinks• An open, casual environment that gives you plenty of freedom to realize your ideas• A culture that embraces change, speed and getting things done while balancing your personal freedom• Long term career opportunities and professional growth in a global company• You’ll work with an outstanding group of smart, friendly and driven people in one of the most innovative tech companies in Sofia• Referral bonus

• Trainings covered by the company