SCRAT Alerting Engineering- Sr Analyst

Job Description :

• Collaborative Use Case Development: Partner with cross-functional teams-Threat Intelligence, Incident Response, Forensics, and SOC-to design custom security use cases aligned with the MITRE ATT&CK framework, leveraging collective insights for impactful outcomes.
• Advanced Detection & Response: Develop and implement cutting-edge detection strategies using a wide range of security tools and technologies to proactively reduce risks and strengthen the organization's security posture.
• Threat Analysis Expertise: Utilize deep knowledge of cyber attack patterns, tactics, and techniques to analyze threats, distinguishing malicious behavior from benign activity for more accurate threat detection.
• Continuous Threat Adaptation: Stay ahead of emerging threats and industry trends to ensure security strategies remain effective and adaptive in a constantly evolving threat landscape.
• Validation & Metrics Reporting: Participate in red teaming and penetration testing to validate use cases, and deliver actionable metrics to leadership that demonstrate the effectiveness and business value of security initiatives.

• Certifications Preferred: CISSP, ISSMP, SANS, GSEC, GCFA, GNFA, GIAC, and/or GCIH are highly desirable.
• Educational Background: Bachelor's degree in Information Technology, Cybersecurity, Computer Science, or a related field equivalent professional experience also considered.
• Framework & Methodology Knowledge: Strong familiarity with cybersecurity frameworks such as the Cyber Kill Chain and MITRE ATT&CK.
• Analytical & Problem-Solving Skills: Proven ability to think critically, analyze complex data sets, and apply both qualitative and quantitative reasoning.
• Creative Thinking: Demonstrated aptitude for developing innovative solutions to complex security challenges.
• Incident Response Expertise: Hands-on experience in security event monitoring, incident investigation, and end-to-end incident response lifecycle.
• Time Management & Leadership: Capable of managing multiple tasks simultaneously while mentoring and guiding junior analysts.
• Offensive Security Understanding: Solid knowledge of common attack vectors, adversarial tactics, and offensive security principles.
• Data Correlation Skills: Ability to correlate artifacts across multiple datasets to support investigation and analysis of security incidents.
• Comprehensive Security Knowledge: Broad expertise in product and information security, covering system development, administrative controls, access management, physical security, and disaster recovery processes.
• Domain Expertise: Deep knowledge in at least one core security area such as Security Governance, Risk Management, Network Security, Threat & Vulnerability Management, or Incident Response & Forensics.
• Professional Experience: 5-8 years of experience in Information Security or a related IT field.
• Industry Exposure: Previous experience in the Financial Services sector is preferred.
• Metrics & Reporting: Proficient in generating security metrics, trends, and executive management reports.
• Technical Skill Areas: Hands-on experience across various technical domains including:
  • Network Security Controls (e.g., Firewalls, IDS/IPS, WAF, Proxies, VPNs)
  • Anomaly Detection and Investigative Analysis
  • Host-based and Network Forensics
  • Operating Systems and Web Traffic Analysis
• Tools & Platforms: Experience with tools such as EnCase, FTK, SIFT, Splunk, Redline, Volatility, Wireshark, tcpdump, and other open-source forensic utilities.
• Cloud & Endpoint Security: Familiarity with securing cloud environments, operating systems, databases, applications, and mobile devices.
• Risk Management: Practical experience in performing information security risk assessments, audits, and control reviews.