Cirt Analyst

CIRT Analyst - (BRU205RY)

Description
**Division**

Cyber Threat Analysis & Response (CTAR) is part of the Group Security and Business Resilience division. The main responsibility of the team is to execute the Cyber Threat Management (CTM) capabilities, Security Operations Centre (SOC), and Cyber Incident & Response Team (CIRT). This includes cyber threat intelligence, vulnerability management, penetration testing, brand and digital footprint monitoring, security incident and event monitoring, cyber analytics, incident management and forensic analysis.

CIRT establishes and executes the security incident response framework to ensure a consistent and effective approach to security incident management.

Perform in-depth incident reviews, impact assessments, root-cause analysis and manage stakeholder engagement. Execute forensic analysis/investigations and supports Fraud and Personnel related incident investigations.

**Role**

You join Cyber Incident & Response Team (CIRT) as an Analyst

In your role as CIRT Analyst you support the incident response capabilities and forensic technologies, understand potential security incident impact on complex corporate environments and assess and support incident remediation to a conclusion. Assist reporting and stakeholder management activities.

Your primary duties will be:

- Execute / manage the Cyber Security Incident Management process to ensure timely mitigation and escalate to appropriate incident resolver groups leaders. Execute third-tier incident handling including incident remediation in collaboration with the IT resolver team.
- Execute / assist in the delivery of the organisation’s security incident management including coordination and communication with the wider security organisation, the business, IT and external stakeholders where required.
- Execute & Assist in forensic investigations into potential or confirmed incidents in alignment with company guidelines.
- Assist in “malicious document”/ malware analysis to ensure timely proactive mitigation
- wns the incident and leads the resolution.
- Support security incident mitigation and escalate to appropriate incident resolver groups and leadership as required.
- Support incident management, including containment, analysis, remediation and reporting; including stakeholder communications.
- Ensure preservation of digital evidence throughout investigations; escalate exceptions to experienced team members.
- Uses a range of technical skills to build a picture through circumstantial links of an incident / case.
- Independently handles investigations within framework of procedures.
- Validate and report deviation of incident response playbooks for various scenarios involving SOC and CIRT personnel.
- Support engagement with Threat Intelligence and the SOC personnel to develop integrated incident management processes.

**Qualifications**:
**Technical skills**:

- You are interested in the modern cyber security landscape
- You have an IT / Computer Science degree (Bachelor, Master,)
- Hands-on experience in incident response or in a similar role such as Threat Analyst or SOC analyst
- Knowledge of operating Systems : Windows, Unix/Linux
- Knowledge of networking (TCP/IP)
- Good English communication skills (written and oral)

**Assets**
- certifications GIAC Certified Incident Handler (GCIH), Forensic Analyst (GCFA), Forensic Examiner (GCFE), GIAC Reverse Engineering Malware (GREM) or other equivalent technical certifications ;
- Knowledge of following technologies and processes: firewalls, IDS, proxy, WAF, Active Directory, antivirus, patch management,...
- Knowledge in Python Scripting
- Experience with vulnerability management & threat management, vulnerability scanning, Data Loss Prevention (tools and processes)
- Knowledge of IDA or other decompilation tools

**Soft skills**
- Good security mind set;
- Eager to work with challenging and technical concepts; self-learning ability (you’re ready to dive into new technologies and extend your own expertise)
- Good analytical skills
- Flexible and pragmatic, open-minded
- A good communicator orally and in writing
- A good team player
- A problem solver (you recognize underlying issues and problems, you analyse root causes and define solutions accordingly)
- Accurate, acting with attention to details
- At ease in a fast changing environment
- Can express well-founded opinions and positions and understanding their consequences (judgement)
- Ability to quickly adapt to an international and diverse company
- Project Management appetite
- Client focus and delivery oriented

Great Place to Work for All

We believe that our people are our strength. The diverse talents that our employees bring to the table, are directly linked to our global success. We are committed to creating an inclusive culture that celebrates diversity, and strive to be a Great Place to Work for All. All qualified applicants will be considered for employment, regardless of their race, religion