Role: Security Operations Analyst
Location: Colombo, Sri Lanka
What We do:
Kognitiv empowers global brands to redefine loyalty through advanced data activation and multi-enterprise collaboration.
Founded in 2008, Kognitiv is challenging brands to redefine how they engage with their customers and deliver meaningful experiences that earn their lifetime loyalty. In June 2020, Kognitiv and Aimia’s Loyalty Solutions came together to create a data and technology-led business, employing people across 20 countries worldwide.
With 60+ clients and partners all over the world, Kognitiv is removing the complexity of cultivating loyalty, data, and partnerships, so brands can deliver enhanced value, personalization, and experiences to today’s consumers, right where they are.
About the opportunity:
As a member of the Kognitiv Security Team, your role as Security Operations Analyst will provide crucial insight and support into vulnerability management and security compliance.
In your role at Kognitiv, you’ll have the opportunity to work with teams all over the globe, assisting them to identify vulnerabilities and continually improve cyber security posture with the overall goal to protect client data.
Areas of key responsibilities:
- Conduct and tune network and system vulnerability assessments and provide corrective/remediation actions
- Drive the end-to-end vulnerability lifecycle from discovery to closure
- Identify internal and external threats that could result in unauthorized disclosure, misuse, alteration, or destruction of customer’s information assets
- Identify and prioritize all vulnerabilities in respective environments and provide timely vulnerability assessment reports to key stakeholders
- Ensure timely follow up with patch management and vulnerability remediation in coordination with operations teams.
- Responsible for understanding, reviewing, and interpreting assessment and scanning results, reducing false positive findings, and acting as a trusted security advisor to product teams.
- Learn and adapt to Kognitiv culture, security strategies, security goals, security objectives, and security capabilities
- Identify organizational position and posture against emerging and zero day threats
- Contribute technical authority, vision, documentation of operational procedures and guidance to ensure the continued evolution of Kognitiv’s Security Program
- Provide system administrators, system owners, and IT support staff with effective vulnerability mitigation strategies, meaningful vulnerability metrics, security controls and or corrective actions for mitigating technical and business risk
- Develop and report enterprise-level metrics for vulnerabilities and remediation progress
- Understand, demonstrate, and educate stakeholders on the real-world impact of threats and vulnerability exploitation in a given environment
- Manage requests, assessments, and meet client and policy expectations within established service levels.
Background and Experience:
- Background in security threat analysis – ability to determine risk level of identified threats and necessary urgency in remediation
- Possess strong technical understanding of common network and system vulnerabilities
- Understanding of networking principles (OSI Model, routing, TCP/IP)
- Windows and Linux operating systems, and basic administration
- Best practices in common security technologies
- Problem solving skills and ability to work under pressure in a rapid paced, customer facing 24/7 production environment
- Experience working with cross-business and cross-functional teams in a geographically distributed environment
- Setting up scanning profiles, conducting routine scans of our environment, oversee remediation efforts, etc.
- Creating dashboards and producing informative reports
- Willingness to share security tasks
- Willingness to work flexible hours
- Willingness to accept direction, support leadership vision, and to serve as a point of contact directly supporting vulnerability assessments, system owners, and executives
- Excellent written and verbal communication skills
Skills and abilities:
- Minimum 2 years of experience with Qualys products including
- VMDR
- Web Application Scanning
- CloudView / Total Cloud
- Asset View
- Experienced in setting up scanning profiles, conducting routine scans of security environment, oversee remediation efforts, etc.
- Triaging various types of security events.
We are a passionate and innovative organization looking for exceptional people to come and join us. This is an exciting opportunity to work for an international business, in a high energy environment with a collaborative, smart and passionate team. If you like the sound of us and the role: get in touch!
Here at Kognitiv, we don’t just accept difference - we celebrate it! Greater diversity means greater variation in ways of thinking, perspectives and approach. And we thrive on it for the benefit of our employees and our clients. Kognitiv are committed to creating an inclusive environment and all employment is decided based on qualifications, merit, fit and business need.