Cyber Security Analyst

Corporate Title: Assistant Vice President

Division: CCB-Group Security & Technology Platforms (51003024)

Department: CCBN-Cyber Defence Operations (54000806)

Join a team of cybersecurity professionals and help Swiss Re to fulfil its mission in making the world more resilient. As a Cybersecurity Analyst, you'll be monitoring current threats by analysing and handling major cyber incidents and implementing standards. What's more, you'll be working in a hybrid setup, perfectly balancing work from home and the office premises.

About The Role

Cyber Defence is the focal point for all security activities across Swiss Re. We are responsible for keeping the company safe - by going the extra mile in terms of preciseness and diligence. As part of the Security Team, Cyber Defence is responsible for maintaining security operations, focused on delivering high-quality detection monitoring and response solutions. We're looking for a cybersecurity professional who'll use their creative thinking to investigate alerts, and helping us to improve our incident response techniques.

In your role, you will…

• Proactively identify and respond to cyber threats
• Implement and ensure appropriate standards
• Craft detection content
• Prioritize triage events
• Improve existing detection content and playbooks
• Ensure in-time incident response
• Perform on-duty/ on- call support
• Handle major security incidents
• Understand the environment and applications
• Analyse and document incidents

About You

• Experience in cyber security as an analyst or incident responder (in a SOC/CSIRT setup, preferably)
• In-depth knowledge of current threat landscape, offensive tooling, and OWASP and MITRE ATT&CK® techniques
• Technical writing skills to present complex topics to non-technical audiences
• Excellent oral and written communication skills (English)
• Malware and exploit analysis (or reverse engineering)
• Developing hypothesis-driven threat hunts
• Analysing various events, including but not limited to web traffic, underlying network protocols, malware, lateral movement TTPs (techniques, tactics, and procedures), or Microsoft and Linux security events
• Logfile correlation and analysis
• System and memory analysis
• Chain of custody and forensic acquisitions
• Major incident response or breach investigation management

Nice-to-Have

• Experience developing in Python, Kusto, or any other scripting language
• Experience with Azure or Amazon AWS

We are an equal opportunity employer and value diversity at our company. We do not discriminate based on race, religion, color, national origin, gender, sexual orientation, age, marital status, veteran status, or disability status.

We will ensure that individuals with disabilities are provided reasonable accommodation to participate in the job application or interview process. Please contact us to request accommodation.