Junior Analyst, Security Operations

The job responsibilities outlined in this document are not exhaustive and may evolve over time and be

reviewed according to business needs.

ROLE DESCRIPTION

In this role, you will be responsible for monitoring and analyzing security events from multiple sources and for managing security incidents to ensure a coordinated, timely, and effective response.

The job holder ensures SES’s security incident response readiness and drives the definition, implementation, and continuous improvement of SES’s security incident response framework.

In addition, the role supports key security management processes by providing actionable intelligence derived from security incidents, threat hunting activities, and identified vulnerabilities and threats.

In addition, you will support reactive and proactive threat hunting activities, leveraging security telemetry, incident data, and vulnerability information to identify emerging threats.

The role contributes to key security management processes by providing actionable intelligence derived from security incidents, threat hunting efforts, and identified vulnerabilities and threats.

As a Junior Analyst, Security Operations, you will be responsible for:

• Collect and analyze security information from different information resources to identify relevant threats
• and vulnerabilities and disseminate synthesized intelligence information within the organization
• Monitor and analyze security events from multiple sources to identify security incidents
• Perform in-depth technical analyses of security threats and incidents, including malware analysis and
• network traffic analysis
• Manage security incidents to ensure a coordinated, timely and effective response according to established procedures and processes.
• Ensure that the appropriate mitigative actions are taken within a timely manner consistent security practices.
• Assess and triage security incidents and coordinate the appropriate notifications and escalations in a timely manner.
• Document security incidents, including analysis results, the timeline of events and incident response activities.
• Ensure SES security monitoring and incident response readiness by driving the definition, implementation and continuous improvement of SES’s security incident response framework including
• relevant policies, processes and procedures and incident response tools
• Provide synthesized intelligence from different information resources and support reactive and
• proactive threat hunting activities, enriching current detection capabilities across all tools and
• technologies
• Ensure the accurate and timely escalation and prioritization of alerts/incidents based on criticality
• and impact
• Follow up on pending tasks/actions with regards to security incidents and to security activities and
• projects
• Provide support to other teams as needed throughout the course of the incident until closure
• Ensure established Key Performance Indicators are met

COMPETENCIES

• Ability to coordinate cross-functional incident response teams and work
• Autonomous
• Innovative mind
• Strong analytical and problem-solving skills
• Stress resistant and able to manage multiple incidents and tasks at the same time
• Good written and verbal communication skills
• Excellent team player
• Ability to effectively interact with all organization stakeholders
• Critical thinking skills

QUALIFICATIONS & EXPERIENCE

Required

• Bachelor’s degree and 1 to 3 years of experience in Computer Science or Cyber Security (a combination
• of experience and education will be considered)
• Knowledge about security technologies such as Security Information and Event Management and End Point Detection and Response technologies
• Knowledge regarding computer security and incident handling
• Knowledge regarding analysis and triaging security events from various sources (including endpoint
• and network sources)
• Knowledge about script analysis, ability to use tools to extract Indicators from scripts submitted for
• analysis
• Traffic analysis knowledge
• Knowledge regarding tools and tactics used by different threat agents
• Fluency in English, any other language is considered as an asset
• Knowledge regarding system security (multiple operating systems, including Windows platforms,
• and Linux), application security (including a clear understanding of their vulnerabilities, exploits and
• how to secure them) and network security
• Availability to work in shifts
• Candidate must be willing to undergo a NATO/EU SECRET security clearance procedure if required

Preferred

• Programming experience and scripting skills in different programming/scripting languages
• Experience in malware analysis
• Experience with forensics analysis, security vulnerabilities and exploits
• Experience with security technologies, such as Antivirus, Network and Host Intrusion Detection
• Systems, Web Proxy/Content Filtering, Authentication technologies, Security Information and Event
• Management
• Security certifications (e.g., CompTIA Security+, CompTIA CySA+, GCIH, BTL1)