Technical Analyst

  • competitive
  • Hong Kong
  • Contract, Full time
  • Huxley APAC
  • 20 Feb 19

Analysts are responsible for monitoring multiple networks simultaneously using the latest threat detection technologies to detect, analyse and respond to cyber security incidents. The Analyst will follow detailed processes and procedures to identify and analyse these incidents, escalating to and supporting more senior analysts based on the severity and potential impact of the incident.

Analysts are responsible for monitoring multiple networks simultaneously using the latest threat detection technologies to detect, analyse and respond to cyber security incidents. The Analyst will follow detailed processes and procedures to identify and analyse these incidents, escalating to and supporting more senior analysts based on the severity and potential impact of the incident.

The primary responsibilities of the Analyst are:

  • Monitoring the entire global technology and information estate for new attacks and log them to appropriate systems.
  • Triaging potentially malicious events to determine severity and criticality of the event.
  • Responding to alerts from the various monitoring/detection systems and platforms within defined SLAs.
  • Monitoring security appliance health and perform basic troubleshooting of security devices; notify security engineering as necessary for malfunctioning equipment.
  • Identifying and developing new ideas to enhance our detection capability (Use cases) and mitigations (Playbooks) across the security platforms.
  • Contributing to the continued evolution of hunting, monitoring, detection, analysis and response capabilities and processes.
  • Training, developing and mentoring colleagues in area(s) of specialism.
  • Collaborating with the wider Cybersecurity (and IT) teams to ensure that the core, underlying technological capabilities that underpin an effective and efficient operational response to current and anticipated threats and trends remain fit for purpose.
  • Identifying processes that can be automated and orchestrated to ensure maximum efficiency of Global Cybersecurity Operations resources.
  • Promoting a "self-critical" and continuous assessment and improvement culture whereby identification of weaknesses in the bank's control plane (people, process and technology) are brought to light and addressed in an effective and timely manner.

Requirements:

  • The jobholder will ensure the fair treatment (service excellence) of our customers is at the heart of everything we do, both personally and as an organisation.
  • The jobholder will also continually reassess the cyber-security and operational risks associated with the role and inherent in the business, taking account of changing economic or market conditions, legal and regulatory requirements, operating procedures and practices, management restructurings, and the impact of new technology.
  • This will be achieved by ensuring all actions take account of the likelihood of operational or cyber-security risk occurring. Also by addressing any areas of concern in conjunction with entity management and/or the appropriate department.

Skills

  • Knowledge of cyber security principles, global financial services business models, regional compliance regulations and laws.
  • Good understanding and knowledge of common industry cyber security frameworks, standards and methodologies, including; OWASP, ISO2700x series, PCI DSS, GLBA, EU data security and privacy acts, FFIEC guidelines, CIS and NIST standards.

Technical Skills

  • Experience analysing logs for indicators of compromise, collected from various network monitoring devices such as firewalls, IDS/IPS, web proxies, email filters, etc.
  • Excellent knowledge and demonstrated experience of common log management suites, Security Information and Event Management (SIEM) tools, use of "Big Data" and Cloud-based solution for the collection and real-time analysis of security information.
  • Good knowledge and demonstrated experience of common cybersecurity technologies such as; IDS / IPS / HIPS, Advanced Anti-malware prevention and analysis, Firewalls, Proxies, MSS, etc.
  • Good knowledge and demonstrated experience of common operating systems and platforms to include Windows, Linux, UNIX, Oracle, Citrix, GSX Server, iOS, OSX, etc.
  • Good knowledge of common network protocols such as TCP, UDP, DNS, DHCP, IPSEC, HTTP, etc. and network protocol analysis suites.
  • Good knowledge of key information risk management and security related standards including OWASP, ISO2700x series, PCI DSS, GLBA, EU data security and privacy acts, FFIEC guidelines and NIST standards
  • Functional knowledge and technical experience of 3rd party cloud computing platforms such as AWS, Azure and Google.
  • Basic knowledge and demonstrated experience in common cybersecurity incident response and forensic investigation tools such as: EnCase, FTK, Sleuthkit, Kali Linux, IDA Pro, etc.

Industry Experience and Qualifications

Candidates will be evaluated primarily upon their ability to demonstrate the competencies required to be successful in the role, as described above. For reference, the typical work experience and educational background of candidates in this role are as follows:

  • 3+ years of experience in similar cyber security analyst role
  • Experience within an enterprise scale organisation; including hands-on experience of complex data centre environments, preferably in the finance or similarly regulated sector
  • Industry recognised cyber security related certifications including; CEH, EnCE, SANS GSEC, GCIH, GCIA and/or CISSP
  • Formal education and advanced degree in Information Security, Cyber-security, Computer Science or similar and/or commensurate demonstrated work experience in the same.

Location: Hong Kong

If you would like to know more information, please contact Danya Kumar

Registration No.: R1660502

Kindly send your updated CV if you are keen to take this role.

Huxley, a trading division of SThree Pte Limited (Registration Number: 200720126E | SThree Pte Limited Licence Number 16S8216 | Huxley Licence Number 53132076J)

Award winner of:

International Recruitment Company of the Year by Recruitment International 2016

Best Client Services by Asia Recruitment Awards 2017

Best Overseas Operation by Global Recruiters 2017

Highly Commended for Best Large Recruitment Business 2017