Description
Cyber intelligence & Incident Response [Information/Cyber security] - Banking
Mandatory Technical Competence
- Strong Analytical and Problem Solving Skills
- Knowledge of cyber security threats, threat actors and their associated TTPs
- Knowledge of log formats for syslog, HTTP logs, DB logs and how to gather forensics for traceability back to a security event
- Experience with security devices such as SIEM, IDS/IPS, HIDS/HIPS, anomaly detection, Firewall and Antivirus systems and their log output
- Network forensics: network traffic protocols, traffic analysis (ie PCAP), intrusion detection
Optional Job Requirements
- Takes an active part in the gathering, analysis, and communication of threat intelligence through the intelligence process
- Provide intelligence briefings to other areas of the business on threats or threat actors and the risk they bring to the environment
- Coordinates the planning, development and production of communication materials using various communication vehicles
- Interface with Security Operational Center (SOC) management and related internal groups for review, production, and dissemination of content