Total 4 Manager analyst job vacancies in Legal / Public / Security category in The United States of America

IT Cyber Security Analyst & Team Leader - CISSP or CySA+ or MSc Information Security

Weymouth, Dorset, or London, South East UK or Stoke on Trent, Staffordshire

£50,000pa + Hybrid & Flexi-Working & Training & Certifications Available

Weymouth, Dorset, or London, South East UK, or Staffordshire + Hybrid and Flexible Working as Standard

The Client: Are a well-known High St and Online retailer who are seeking a Senior IT Cyber Security Analyst who specialises in Microsoft / Wintel Servers and Virtualisation supporting a UK wide infrastructure.

Objective: You will Lead 2 x Cyber Security Analysts, giving support to the Head of Cyber Security in delivering the Information Security service to the global business.

You will lead all Cyber Security Operations function and be the first point of contact for technical information security related matters.

Role Responsibilities:

• You will Lead 2 x Cyber Security Analysts, giving support to the Head of Cyber Security
• Act as the first point of action or escalation for the identification of security incidents and their investigation.
• Be responsible for the managed Security Operations Centre (SOC), Network Monitoring and Managed Detection and Response services and associated vendor relationships.
• Offer mentoring, advice and guidance to those in your Team
• Be the subject matter expert for technical security related queries, providing the Security Architect, IT Service and Delivery teams and business stakeholders with authoritative advice and defined security requirements.
• Be responsible for the Security Education and Awareness scheme.
• Ensure Cyber Security campaigns are conducted, and improvements implemented and ensure colleague queries around policies and requirements are appropriately answered in a timely manner.
• Be responsible for the Vulnerability Management process.
• Act on vulnerability information and conduct Cyber Security risk assessments and work with suppliers, partners, and internal teams to ensure security vulnerabilities are identified, assessed, and remediated in good time.

Key Requirements you will need:

• In depth knowledge of Information Security concepts and principles, including cloud security capabilities.
• Experience with configuring and utilising security tooling, including SIEM, EDR, vulnerability scanners, CASB, network scanning, DLP.
• Hands-on IT experience with proven expertise in a previous Information Security role.
• Vendor management experience.
• A relevant intermediate or advanced Information Security based qualification (e.g. CISSP, CySA+, MSc Information Security)
• Ability to critically analyse information and make decisions based on judgement, knowledge, and experience.

Business Knowledge:

• Knowledge of Retail and eCommerce is of great advantage but is not essential.
• Working knowledge of the Information Security elements of Data Protection regulations (e.g. GDPR, The Data Protection Act 2018) is essential.
• Knowledge of the NIST Cyber Security Framework is of advantage.
• Awareness of regulations that affect Retail, such as PCI DSS, is of great advantage but experience of maintaining compliance is not essential.

CISSP or CySA+ or MSc Information Security Certifications will be advantageous.

Call 0121 712 8715 today!

Zur Unterstützung und Verstärkung unseres Global IT Security Teams an unserem Standort in Hamburg suchen wir zum nächstmöglichen Zeitpunkt Sie als

Vulnerability Manager / (Senior) IT Security Analyst (all genders)

Vollzeit und unbefristet

Ihre Aufgaben:

• Überwachung und Analyse von Sicherheitsereignissen mithilfe eines SIEM-Systems (Security Information and Event Management) mit Schwerpunkt auf Sentinel

• Erkennen von Vorfällen und Leitung von oder Teilnahme an den Untersuchungs- und Reaktionsaktivitäten mit dem externen SOC-Anbieter und dem Security Engineering Team

• Proaktive Suche nach Bedrohungen, Identifizierung neuer Risiken und Schwachstellen

• Verwaltung von Schwachstellen durch Scans, Bewertungen und priorisierte Abhilfemaßnahmen

• Enge Zusammenarbeit mit dem Team Lead SOC und dem externen SOC-Team, um eine effektive Erkennung von und Reaktion auf Vorfälle zu gewährleisten

• Mithilfe bei der Entwicklung und Pflege von SOC-Prozessen, -Verfahren und -Richtlinien

• Informieren Sie sich über die neuesten Cybersecurity-Bedrohungen, Trends und Best Practices

• Teilnahme an kontinuierlichen Lern- und Entwicklungsaktivitäten zur Verbesserung der Kenntnisse und Fähigkeiten im Bereich der Cybersicherheit

Ihr Profil:

• Bachelor-Abschluss in Informatik, Informationstechnologie oder einem verwandten Fachgebiet oder eine gleichwertige Qualifikation

• Fundierte Berufserfahrung im Bereich der Cybersicherheit mit Schwerpunkt auf SOC-Betrieb, Reaktion auf Vorfälle, Schwachstellenmanagement und/oder Identifizierung von Bedrohungen

• Ausgeprägte Kenntnisse der Prozesse zur Erkennung, Reaktion und Lösung von Vorfällen.

• Fachkenntnisse in der Nutzung von Cybersecurity-Tools, wie:

  • SIEM: Sentinel (must-have)

  • XDR: Defender (must-have), TrendMicro (nice-to-have)

  • Vulnerability Management: Rapid 7, Nessus

  • Firewalls: Fortinet FortiGate and FortiAnalyzer

  • Penetration Testing Tools: Kali Linux, Metasploit, Burp Suite

  • Network Traffic Monitoring: Wireshark, tcpdump, or Cain & Abel

  • Web Vulnerability Scanning Tools: OWASP ZAP, Nikto, Wapiti

  • Ticketing Solutions: Jira Service Management, ServiceNow Incident Management, Zendesk

  • Investigation Tools: The Sleuth Kit (TSK), Autopsy, Encase

• Nachgewiesene Fähigkeit, Sicherheitsbedrohungen proaktiv zu erkennen und zu untersuchen

• Ausgeprägte Problemlösungsfähigkeiten und die Fähigkeit, komplexe Sicherheitsvorfälle zu analysieren

• Effiziente Koordination mit internen und externen Teams

• Zertifizierungen wie CISSP, CEH, CISSM, GCIH, GCIA, Microsoft SZ-200, AZ-900 oder gleichwertige Zertifikate sind von Vorteil

• Ausgeprägter Teamgeist und professionelle Kommunikationsfähigkeit

• Professionelle Sprachkenntnisse in Englisch, Deutschkenntnisse sind von Vorteil, Französisch wünschenswert

Wir bieten Ihnen:

• Eine Anstellung in einem interessanten, international expandierenden Hightech-Umfeld, das Kreativität, Innovationen und Teamwork schätzt

• Eine verantwortungsvolle Tätigkeit mit kurzen Entscheidungswegen in einer flachen Hierarchie

• Einen modernen Arbeitsplatz, der in eine informelle, gemeinschaftliche Unternehmenskultur eingebettet ist

• Vermögenswirksame Leistungen, Urlaubsgeld, flexible Arbeitszeiten sowie eine jährliche, betriebsabhängige Bonuszahlung, Deutschlandticket

Wir freuen uns über Ihre aussagekräftige Bewerbung (Anschreiben, Lebenslauf, Zeugnisse) mit Angabe Ihrer Verfügbarkeit und Ihren Gehaltsvorstellungen, die Sie uns bitte direkt hier unter "Apply" zukommen lassen.

---

At Evotec’s headquarters in Hamburg, Germany, the Global IT Security team is seeking a highly motivated and dedicated

Vulnerability Manager / (Senior) IT Security Analyst (all genders)

Full time and permanent

Responsibilities:

• Monitor and analyze security events using a Security Information and Event Management (SIEM) system, with a focus on Sentinel

• Detect incidents and lead or participate in the investigation and response activities with the external SOC provider and the Security Engineering team

• Proactively hunt for threats, identifying emerging risks and vulnerabilities

• Manage vulnerabilities through scans, assessments, and prioritized remediation efforts

• Collaborate closely with the Team Lead, SOC, and the external SOC team to ensure effective incident detection and response

• Assist in the development and maintenance of SOC processes, procedures, and guidelines

• Stay updated on the latest cybersecurity threats, trends, and best practices.

• Participate in continuous learning and development activities to enhance cybersecurity knowledge and skills

Qualifications:

• Bachelor's degree in Computer Science, Information Technology, or a related field, or an equivalent qualification

• Professional working experience in cybersecurity roles, with a focus on SOC operations, incident response, vulnerability management, and/or threat hunting

• Strong knowledge of incident detection, response, and resolution processes.

• Expertise in utilizing cybersecurity tools, such as:

  • SIEM: Sentinel (must-have)

  • XDR: Defender (must-have), TrendMicro (nice-to-have)

  • Vulnerability Management: Rapid 7, Nessus

  • Firewalls: Fortinet FortiGate and FortiAnalyzer

  • Penetration Testing Tools: Kali Linux, Metasploit, Burp Suite

  • Network Traffic Monitoring: Wireshark, tcpdump, or Cain & Abel

  • Web Vulnerability Scanning Tools: OWASP ZAP, Nikto, Wapiti

  • Ticketing Solutions: Jira Service Management, ServiceNow Incident Management, Zendesk

  • Investigation Tools: The Sleuth Kit (TSK), Autopsy, Encase

• Proven ability to proactively identify and investigate security threats

• Strong problem-solving skills and the ability to analyze complex security incidents

• Effective coordination with internal and external teams

• Industry certifications such as CISSP, CEH, CISSM, GCIH, GCIA, Microsoft SZ-200, AZ-900, or equivalent are preferred

• Strong teamworker with professional communication skills

• Excellent written and verbal communication skills in English; proficiency in German is strongly preferred, and French would be a plus

Our offer:

• A position within a vigorous and exciting professional environment promoted by an open culture and a spirit of community

• A diverse, international workforce with a dynamic working environment that fosters creativity, innovations and teamwork

• 30 days of annual holiday, flexible working hours, and in-house canteen

• Capital forming benefits, holiday allowance, annual bonus depending on performance, and monthly allowance for public transportation (Deutschlandticket - JobTicket Premium)

FR : Dans le cadre de sa politique Diversité, Evotec étudie, à compétences égales, toutes les candidatures dont celles des personnes en situation de handicap.

ENG : In the frame of our Diversity policy, Evotec considers, with equal competences, all applications including people with disabilities.

The Mercedes-Benz Group AG CISO heads Mercedes-Benz’s Global Cyber Security Department (based in Stuttgart, Germany). Cyber Intelligence and Response Centre (CIRC) is responsible for providing Intelligence-driven approach towards Digital Forensics Incident Response (DFIR). The CIRC is a 24 by 7 follow the sun operations with counterparts in EMEA and NAFTA to provide holistic support towards incident management affecting our global Mercedes-Benz assets working closely with our threat intelligence team to monitor our global threat landscape.

Role and Responsibilities:

• Conduct technical analysis and triaging of triggering alerts ingested from Mercedes-Benz log sources to determine impact, scope of impact and determine corresponding remedial actions to mitigate, contain and/or otherwise limit the impact of the incident
• Analyzing, triaging and processing security threats to identify potential risk gaps and corresponding organizational impact by conducting in-depth analysis of the identified threat, attack vector or intelligence information
• Working closely with the CIRC threat intelligence team to aid in the enhancement of contextual analysis and providing threat hunting support towards Open Source Intelligence (OSINT) related Indicators of Compromise (IoCs)
• Acting as a point of contact towards Mercedes-Benz end users and stakeholders in providing cybersecurity incidents updates and other related activities that might arise from time to time during the incident coordination, remediation and recovery
• Provide duty analyst support for the CIRC operations during weekends, utilizing a pre-defined duty roaster, ensuring the continued operations and monitoring of threats and triggering alerts 24 by 7, follow the sun model
• Provide project coordination support to assigned projects by the Head of Global Defensive operations towards the roll out, implementation and acting as the point of contact for local stakeholders towards the implementation and coordination of the projects assigned
• Provide technical inputs towards the virtual teams as assigned by the Head of Global Defensive operations towards the operational directions, method determination and other related administrative support required from time to time

Education and Certifications:

• Degree from a reputable university or significant course work in Computer Science, Networking, engineering or other computer-related fields of study
• One or more of the following professional certification is beneficial: CISSP, GCIH or similar

Technical Skills:

• Proficient understanding of cyber and IT security risk, threat and prevention measure
• Proficient understanding of networking and network security technologies
• Good understanding of Threat Intelligence utilization towards incident response
• Good knowledge of security standards and best practices
• Good understanding of various operating systems
• Good understanding of the Cyber Kill Chain and the ability to display clear analytical skills
• Previous experience in a corporate or enterprise environment, engaging with and responding to a diverse array of internal stakeholders, including senior management
• Knowledge of Microsoft Office suite (Word, Excel, PowerPoint and Access)
• Knowledge of Splunk is beneficial

Experiences:

• Have good emotional intelligence and is a proven team player
• Rational and calm under pressure
• Effective oral and written communication skills
• Good timekeeping ability to cope with a tight deadline and achieve operational objectives
• Self-motivated with the ability to carry out assigned tasks with minimum supervision

This position is based in location Singapore. A valid and approved work visa is required for employment in Singapore in accordance to local labour law regulations. We regret to inform you that only shortlisted candidates will be notified.

The Security Operation Center (SOC) is seeking enthusiastic, passionate and technically strong Cyber Security Senior Analyst. Analyst will act as subject matter expert for SOC.

• Perform deeper analysis, trending and root cause analysis of the events/incidents handled by SOC Analyst.
• Work on escalated security incidents (malware infections, unauthorized access, malicious emails, Phishing, Distributed Denial of Service (DDoS) attacks, etc.)
• Analysis of cyber threats by deep packet inspection.
• Detection of threat by analyzing large set logs from different security & Network devices, different Operating system, Databases, Web servers/Applications etc.
• Enhance and Build Cyber threat detection use cases and assist in analyzing & reducing false positive.
• Identify infection/compromise in the company utilizing threat intelligence and indicators of compromise (IOCs) from different threat Intel sources and regulators.
• Interface with Cyber Intel, Engineering and security teams.
• Assist in Incident Response for Detected/Reported Cyber security Incidents.
• Generate security reporting and metrics as required
• Process improvement and coaching to SOC Analyst.
• Stay current on the latest Cyber threats, Attacks and vulnerabilities etc.

Education

• ITC/Diploma/Degree in Computer Science / IT Security from a recognized education institution
• Professional security related qualification (e.g. SANS GCIA, GSEC, GCIH) will be favorable although not mandatory

Technical Skills

• Min 3 to 5 years of relevant experience in similar in SOC, Cyber Security Analysis, Investigation and Incident response
• Strong understanding of Networking, Operating System and Cyber Security concepts.
• Strong practical experience in Cyber security: Cyber kill chain, TTP, threat intelligence, malware triage
• Strong understanding of Different Attacks on System, Network, Applications
• Strong knowledge in Internet infrastructure, networking technology and network security (i.e. DNS, DHCP, Firewall, WAF, IDS, IPS, VPN, APT and TCP/IP protocols)
• Malware triage and analysis capability will be an advantage
• Working experience with major SIEM will be an advantage
• Expert in analyzing different logs to detect cyber threats (i.e. Security Devices, Operating Systems, Network Devices, Databases, and Application/Web Servers etc.)

Soft Skills

• Good written and verbal communication skills
• Process and procedure adherence
• Strong analytical and problem solving skill

Other Requirements

• Willing to perform 24X7 shift
• Good teamwork