Refinitiv
,
Nottingham, Nottinghamshire
Lead Cyber Security Malware Analyst - CIRT Tier 3
|
Salary: £20,000 - £29,999, £30,000 - £39,999, £40,000 - £49,999, £50,000 - £59,999 |
---|
Overview
Job Description Job Title: Lead Cyber Security Malware Analyst - CIRT Tier 3 Salary: Competitive Start date: 11th December 2019 End Date: 8th January 2020 Refinitv is looking for a highly skilled cyber security specialist for advance reverse malware analysis, threat hunting and forensics skills The Cyber Security Team protects the information assets of Refinitiv through managing risk, deploying effective security risk framework and ensuring regulatory compliance. This role will sit within the Security Operations group which provides protects and defends the Refinitiv enterprise. The Lead Cyber Security Malware Analyst - CIRT Tier 3 will work in both a team environment and independently to analyze Information Security systems and threat intelligence to identify incidents and recommend mitigation strategies. This position will analyze information systems in order to detect and respond to potential threats in the environment. Additionally, they will act as the Lead Cyber Security Analyst in resolving security incidents. Essential Responsibilities: Perform advanced malware and threat analysis Perform and instruct on threat hunting techniques Serve as a focal technical lead on incident events and incidents and forensics. Provide detailed technical, hands-on incident investigation performing forensics to determine impact and root cause. Lead the investigative process for network intrusions and other cyber security incidents to determine the cause and extent of cyber attacks Summarize events and incidents effectively to different constituencies such as legal counsel, executive management and technical staff, both in written and verbal forms Manage the chain of custody for all evidence collected during incidents, security, and forensic investigations Monitor for and investigate suspicious or malicious activity and alerts Ongoing review of SIEM dashboards, system, application logs, and custom monitoring tools Scripting and configuration of SOAR tools Monitor and analyze SIEM, UBA, network traffic, Intrusion Detection Systems (IDS), security events and logs Prioritize and differentiate between potential incidents and false alarms. Lead and train Tier 1 and Tier 2 incident responders in the steps to take to investigate and resolve computer security incidents. Stay up to date with current vulnerabilities, attacks, and countermeasures. Qualifications / Requirements: Candidate will likely have worked for an Anti-virus or endpoint protection vendor at a technical, hands on level, analyzing malware including sandbox evasion techniques ,and creating signatures. Candidate will have participated on Purple team exercises. Bachelor's degree in Computer Science/Information Security/similar major or 5 years of related field experience 10 years of work experience in Information Technology As a global business, Refinitiv relies on diversity of culture and thought to deliver on our goals. Therefore we seek talented, qualified employees in all our operations around the world-regardless of race, color, sex/gender, including pregnancy, gender identity and expression, national origin, religion, sexual orientation, disability, age, marital status, citizen status, veteran status, or any other protected classification under country or local law. Refinitiv is proud to be an Equal Employment Opportunity/Affirmative Action Employer providing a drug-free workplace. Intrigued by a challenge as large and fascinating as the world itself? Come join us. Locations Nottingham-United Kingdom