We are seeking a highly motivated Cybersecurity Analyst to join our dynamic and fast-growing organization. Tune Protect is a regional insurance company with infrastructure on cloud as well as on-premise. From a cybersecurity perspective, we monitor our infrastructure via a SOC and also with solutions ranging from network firewalls to SOC to EDR, DLP and PAM.
Key Responsibilities:
Work with the team to manage the security infrastructure at Tune Protect. This includes working with the SOC and infrastructure team to analyze and remediate security tickets, EDR operations (for example scanning and ensuring endpoints are clean of vulnerabilities), Email Security on MS365, DLP (for example blacklisting/whitelisting websites, etc), and PAM (for example work with the infrastructure team to ensure all critical user ids are covered).
Demonstrated experience in threat-hunting
Be hands-on and able to utilize/configure our existing security software such as Trend Micro EDR, Forcepoint DLP, Tycothic PAM, and Microsoft 365 email security. Familiarity or experience in using and/or configuring other endpoint protection software, data leak prevention software, privileged access management software and/or firewalls is a strong advantage.
Strong understanding and experience in firewall configuration (Fortigate and Palo Alto) a strong advantage
Strong understanding and experience in hardening OS such as Linux and windows
Understanding of Microsoft Active Directory and its security is a strong advantage.
Assess and manage security risks and implement best practices to minimize them. Monitor and analyze cybersecurity incidents and threats
Perform regular VAPT on our infrastructure and on all new applications internally or with an external vendor. Work with those vendors to ensure their reports are remediated as needed and verified. Experience as a VAPT tester an advantage
Work with infrastructure and cloud engineers and leads to ensure security is handled correctly from design to operations at the network and server level. This includes knowledge of sound security practices from a technical perspective.
Understand industry frameworks like Mitre Att&CK. Stay up to date with the latest security trends and technologies to ensure the company stays ahead of evolving threats
Ensure regular reporting on security statistics are compiled on time and presented to management.
Work with cross-functional teams to ensure that all on premise and cloud-based systems and applications are secure
Work closely with IT audit to ensure all audit discovery and remediation is performed ahead of deadlines
Qualifications and Experience:
Degree in Information Technology (IT), Computer Science, or other related discipline with relevant experience in security operations
IT Security experience with 3+ years (for Senior) or 1+ years (for Junior) or more hands-on experience in any branch of security. Experience being in a lead role an advantage
Professional certification such as CISM, CISA, CSXP, CISSP, CREST, GPEN or equivalent an advantage
Knowledge/experience in Information Security, IT Risk and IT Governance including BNM RMIT. Strong understanding of IT security principles and practice.
Familiarity with security frameworks and regulations such as NIST, ISO 27001, and SOC 2 an advantage
Operational experience working with or in a SOC an advantage
Able to work under broad direction and a self-motivated individual who is able to work independently. Responsible and accountable for work performed and decisions taken.
Ability to quickly learn new or unfamiliar technology and products using documentation and internet resources if required.
Good communication skills written and spoken
Good analytical and problem-solving skills including the ability to visualise and plan troubleshooting steps.
Ability to work collaboratively with other parties toward a common goal
