KEY ACCOUNTABILITIES
- Monitor and analyze user activities for signs of potential insider threats.
- Develop and maintain threat detection tools, techniques, and procedures.
- Utilize threat intelligence platforms to gather, analyze, and disseminate relevant information.
- Perform advanced analysis of insider threat and DLP alerts across various egress channels in on-premise and cloud environments, prioritizing threats using available tools.
- Investigate and document event/alert patterns, collaborating with Cyber Defence, Legal, Privacy, and HR teams during incidents as necessary.
- Create detailed reports on security incidents, investigations, and mitigation efforts.
- Contribute to refining detection tool policies, rules, and operational documents by highlighting areas for improvement.
- Lead the simulated phishing program, including metrics and executive summaries.
- Coordinate with internal and external partners to develop and update quality training content.
- Develop and distribute enterprise-wide communications on information security risks and guidance.
- Create marketing materials and content for global Security Awareness events, including in-person site events as needed.
- Ensure the security awareness program effectively communicates security policies, fostering a global security culture.
MINIMUM QUALIFICATIONS
- Education Full time graduation from an accredited university (Mandatory- Note: This is the minimum education criteria which cannot be altered)
- Minimum 4 years of experience in SOC, Incident Response, Insider Threat or Security Awareness.
PREFERRED QUALIFICATIONS
- Excellent written, verbal communication and presentation skills.
- Ability to create engaging and effective training materials.
- Strong organizational and project management skills.
- Ability to work effectively in a team environment and collaborate with various stakeholders.
Certifications: The following certificates are preferred but not mandatory,
- CompTIA Security+
- CompTIA Cybersecurity Analyst (CySA+)
- EC-Council Computer Hacking Forensics Investigator (CHFI)
- EC-Council Certified Incident Handler (ECIH)
- SANS GIAC Security Essentials (GSEC)
- Microsoft Certified: Azure Fundamentals (AZ900)
- Microsoft Certified: Information Protection and Compliance Administrator Associate (SC400)
