Information Security Analyst Threat Management

Job Description

Job DescriptionInformation Security Analyst: Threat ManagementWhy will you enjoy this new opportunity VMware Threat Management Security Operations Center team is dedicated to monitoring and response for all of VMwares physical and virtual assets and data. We leverage the latest technologies and correlate multiple telemetry points in order to provide multiple layers of coverage against the wide array of possible attack vectors. Guided by the latest threat research and intelligence, our team is at the cutting edge of monitoring for cloud and cloud-native applications. In this role, you will be actively responsible to keep an eye on glass to identify the threat vectors and initiate incident response accordingly. You will be part of an inclusive team where different minds work together to ensure the IT security of the firmWhat is primary need, technical challenge, and/or problem you will be responsible for You will be required to work closely with a highly technical team to detect and respond to cyber threats targeting VMware systems, applications, infrastructure, information, users and play a key role in ensuring the overall IT security of the firm.Success in the Role: What are the performance goals over the first 6-12 months you will work toward completing We will need your ability to identify gaps and make improvements in our current process to achieve effective detection and response to cyber threats.Contribute to project work in a subject of your choice among SOC special interest groups (SIGs) such as Cloud, Automation and Detection Content Development.You need to gain knowledge and get certified in the area of Security Monitoring and Response (eg, GCIH) and Cloud Security (eg, CCSP).What type of work will you be doing What assignments, requirements, or skills will you be performing on a regular basis As an Information Security Analyst at VMware, you will:Provide primary operational support for security events and alerts.Provide response support to users, advising users on alignment to security policies.Design and maintain security playbooks and standard operating procedures.Co-ordinate and communicate shift handovers and incident documentation across a continuously staffed team.Participate in evaluation, implementation, and troubleshooting of Security tools.Evidence collection, documentation, communications, and reporting.Submit threat indicators collected during analysis.Maintain current knowledge and understanding of the threat landscape and emerging security threats.Maintain a high level of confidentiality.Required skills and experience:3-5 years of experience working in security monitoring and incident response.Deep understanding of Security Operations Center (SOC) and Incident Response practices and methodologies.Minimal of Basic knowledge in cloud computing and threats related to cloud environments.Scripting skills such as Python, Perl, RegEx, Splunk Query Language.Experience using SIEM/SOAR products.Experience with endpoint security analysis on Windows, Mac, and Linux event data and related tools.Ability to interact effectively at all levels of an organization, across diverse cultural and linguistic barriers, and as part of a geographically distributed team.Ability to quickly adapt as the external environment and organization evolves.Ability to prioritize projects and deliverables.Comfortable facing new challenges and changes in direction.Self-motivated, team player, and detail oriented.Positive and constructive attitude.Excellent written and verbal communications.Availability outside working hours for high priority events.Must be willing to work odd hours to fulfil operational requirements.Desired skills/experience/certification:,

Keyskills :
information securitysiemnetworkingmicrosoft access