الوصف الوظيفي
Help AG is looking for a talented and enthusiastic Associate Cybersecurity Defense Analystto join our Cybersecurity Operations Center (CSOC) team as part of our client’s Managed Security Services (MSS) business unit. If you have solid knowledge, passion and interest in Cybersecurity, this position might be the right one for you. The Associate Cybersecurity Defense Analyst will be responsible for monitoring multiple client environments to detect and identify Cybersecurity threats and incidents using various SOC technologies and tools.Responsibilities:Follow detailed operational process and procedures to appropriately analyze, escalate, and assist in remediation of critical information security incidents.Handling tickets and large queues and efficiently prioritize based on criticality of alerts.Reach out for assistance in case of initial triage/categorization/prioritization of alerts.Correlate and analyze events using the Splunk/Log Rhythm/QRadar SIEM tool to detect IT security incidents.Monitor logs in/from multiple security technologies, such as SIEM, IDS/IPS, Firewalls, Switches, VPNs, and other security threat data sources.Monitor logs from endpoint data sources (Windows/Linux workstation/server/database, etc.)Respond to inbound requests via phone and other electronic means for technical assistance with managed services.Respond in a timely manner (within documented SLA) to support, threat, and other cases.Maintain a high degree of awareness of the current threat landscape.Participate in knowledge sharing with other analysts and assist in writing technical articles for Internal knowledge bases and providing periodical reports to management.Perform other essential duties as assigned.Able to work in rotating shifts within a 24/7 operating environment.Qualifications & Skills:Saudi National will be preferrable. A Degree in Computer Science, Information Systems, Electrical Engineering, or a closely related degree.An active interest in internet security, incident detection, network, and systems security.0-2 years of experience in information security, in areas such as security operations, intrusion detection, incident analysis, incident handling, log analysis, or endpoint/firewall administration.0-2 years of experience in the following fields: network operations/engineering or system administration on Windows/Linux/Unix.A sound knowledge of IT security best practices, common attack types and detection/prevention methods.Demonstrable experience of analyzing and interpreting system, security, and application logs.Knowledge of the type of events that both Firewalls, IDS/IPS, and other security related devices produce.Experience in using SIEM tools such as Splunk, Log Rhythm, QRadar, Alien Vault, etc.Solid understanding of TCP/IP and network concepts and principles.Knowledge of Cyber Kill Chain and MITRE ATT&CK framework.Familiar with attacks such as scans, man in the middle, sniffing, DoS, DDoS etc.Professional certificates are highly preferred (e.g., CCNA, CEH, Security+, CySA+, eCIR, GISF, GSEC, GCIA, GCIH, GMON…etc.).Outstanding organizational skills.Strong analytical and problem-solving skills.A motivated, self-managed, individual who can demonstrate above average analytical skills.Strong written and verbal skills.Strong interpersonal skills with the ability to collaborate well with others. Quick learner and passionate to grow and develop skills.Ability to speak and write in English is required; Arabic is preferred.Benefits:Health insurance with one of the leading global providers for medical insurance.Career progression and growth through challenging projects and work.Employee engagement activities throughout the year.Tailored training & development program.About Us:Help AG is the cybersecurity arm of e& enterprise and provides leading enterprise businesses across the Middle East with strategic consultancy combined with tailored information security solutions and services that address their diverse requirements, enabling them to evolve securely with a competitive edge.Present in the Middle East since 2004, Help AG was strategically acquired by Etisalat in Feb 2020, hence creating a cyber security and digital transformation powerhouse in the region.Help AG has firmly established itself as the region's trusted IT security advisor by remaining vendor agnostic, trustworthy, independent, and cyber security focused. With best-of-breed technologies from industry-leading vendor partners, expertly qualified service delivery teams and a state-of-the art consulting practice, Help AG delivers unmatched value to its customers by strengthening their cyber defenses and safeguarding their business.
