Job Description
Ankura is a team of excellence founded on innovation and growth.
Qualifications:
- Experience at admin level for O365 portals and Defender.
- Experience at admin level on Proofpoint email protection system.
- Experience with Microsoft operating systems and their security hardening.
- Experience in the cloud, including Azure/CGP/AWS.
- Experience within EDR/MDR/XDR and/or Sysmon, Anti-Virus, SIEM, general security analytics and log sources.
- Familiarity with Mac, and Linux operating systems
- Familiarity with encryption, access management, transmission control and internet protocols (TCPs and IPs), and the CIA Triad (confidentiality, integrity, accessibility).
- DLP management in an enterprise environment.
- Experience dealing with malware and attack vectors, and the ability to perform pattern analysis and discover root causes.
- Planning and scoping security vulnerability assessments and penetration tests, familiar with assessment tools like Tenable and Qualys.
- Take ownership of analysing and responding to security alerts from multiple sources within Ankura and determining possible causes of such security incidents.
- Strong understanding of malware, intrusion detection, and prevention systems.
- To respond to incidents, perform real-time information security incident handling (e.g., forensic collections, intrusion correlation/tracking, threat analysis, and direct system remediation).
- Responsible for monitoring emerging threat patterns, vulnerabilities, and anomalies and escalating any unknown threats to the Senior Management.
- Report appropriate operational issues to the Security Architecture team so that they may be resolved at an architecture level.
- Understand the latest cyber threat landscape, as well as the company’s IT infrastructure.
- Keeping up to date with attacker techniques, stay current on Information Technology (IT) security trends and news.
·Knowledge of networking protocols, switches, routers etc.
·Knowledge of Firewalls.
·Knowledge of cloud security.
·Knowledge of VMware.
·Industry-specific technical knowledge, such as use of specific analysis tools.
·An understanding of information security frameworks and standards such as Cyber Essentials, NIST and ISO 27001.
·Excellent problem-solving and analytical skills.
·Effective communication and collaboration abilities.
Ankura is an Affirmative Action and Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, or protected veteran status and will not be discriminated against based on disability. Equal Employment Opportunity Posters, if you have a disability and believe you need a reasonable accommodation to search for a job opening, submit an online application, or participate in an interview/assessment, please email accommodations@ankura.com or call toll-free +1.312-583-2122. This email and phone number are created exclusively to assist disabled job seekers whose disability prevents them from being able to apply online. Only messages left for this purpose will be returned. Messages left for other purposes, such as following up on an application or technical issues unrelated to a disability, will not receive a response.