Incident Analyst

The Role: Incident Analyst
Security Operations Centre

The Company
Join one of the fastest growing companies in high technology. This company is transforming the IT security landscape to combat the next generation of cyber-attacks.
Ranked #4 on the Deloitte 2012 Technology Fast 500 in North America, it has been featured in BusinessWeek, Bloomberg TV, The Wall Street Journal, Fox News and several other mainstream media and continues to transform the security industry with its unique technology to stop advanced cyber- attacks. This company is the recipient of the Wall Street Journal Technology Innovation Award as well as the JPMorgan Chase Hall of Innovation Award.

The unique platform provides the industry’s leading cross-enterprise threat protection technology to dynamically identify and block cyber-attacks in real time. The core of the platform is a signature-less, virtual machine-based security engine and a cloud-based threat intelligence network, which help organizations protect their assets across all primary threat vectors, including Web, email, and file systems. The platform is deployed in over 40 countries and more than 900 customers and partners, including over 100 of the Fortune 500. The company's customers include leading enterprises in a diverse set of industries, including telecommunications providers, financial services, entities, Internet search engines, social networking sites, stock exchanges, electrical grid operators, networking vendors, and oil and gas companies, as well as leading governmental agencies. Join the team that is protecting the world from the next generation of cyber-attacks!

You are passionate about security. You will do whatever it takes to keep critical systems secure. You have a strong technical background. Analysing security events and responding to incidents gives is your passion. You love working in a fast paced environment, surrounded by brilliant and like-minded people. You walk into the office everyday yearning to learn more. You derive great satisfaction from delighting customers, have strong attention to detail, exude excellence and are driven to succeed.

Come join our Defence team. Security event analysts and Incident Responders delivering high impact, high value services to some of the most recognized brands in the world. Protecting their organizations from threats that actually matter to their business… 24×7.

What We Will Do For You
• Let you look at lots of intriguing data from a diverse set of sources
• Grow your technical and professional skills through training, continuous coaching and mentoring.
• Provide you a team of brilliant people that you can learn from and build lasting relationships with.
• Develop an understanding of your aspirations and provide opportunities to get you there.
• Inspire you to stretch your performance by allowing you to tackle seemingly impossible problems.
• Encourage you to challenge the status quo, think creatively, and innovate – make us better.
• Provide an environment of trust and camaraderie, where you can speak freely about your ideas.
• Provide a platform from which you make a real impact against the bad guys.
• Develop an understanding of, and be flexible to, your needs.
• Make sure you have fun – lots of it!

What You Can Do For Us
• On a daily basis, find the most malicious attacker activity the Internet has to offer.
• Analyse security events, identify relevant incidents, and author high quality client facing reports.
• Define relationships between seemingly unrelated events through deductive reasoning.
• Help us improve and increase our intelligence by enhancing and creating attack signatures.
• Come up with ways to do things faster, better, and more effectively.
• Maintain a laser focus on quality.
• Be fanatical about delighting our customers.
• Be honest, transparent, and genuine with our customers and your peers.
• Work hard, but smart; balance your work and life.
• Exude excellence.
• Help us protect the world.

What You’ll Need to Succeed
• Experience reviewing raw log files, data correlation, and analysis (i.e. firewall, Netflow, IDS, syslogs).
• Experience with NMAP, Nessus, TCPDump, Wireshark, Netcat, and Backtrack/Kali.
• Knowledge of attack vectors, threat tactics, and attacker techniques.
• Understanding of Windows/Linux operating systems and command line tools.
• A solid foundation in networking, with a deep understanding of TCP/IP and other core protocols.
• Knowledge of network based services and client/server applications.
• Exemplary communication and interpersonal skills.
• A willingness to be challenged and a strong desire to learn.
• BS or equivalent degree in Computer Science or related technical discipline.
• An open mind, and an appetite for excellence.

Additional Skills that Will Distinguish Candidates
• Experience working on a mission critical security operations team, preferably 24×7.
• Experience with programming/scripting languages.
• Background in information security operations e.g. incident response and monitoring services.
• Background performing incident response and digital forensics.
• Experience with enterprise information security data management tools such as ArcSight or Splunk .
• Experience with improving signature quality and detection through team collaboration.
• Background in systems administration for Windows and/or POSIX based environments.
• Familiarity with host based security tools e.g. EnCase, Forensic Toolkit, FTK and X-Ways.

Education/Experience
• 4+ years experience in hands-on technical work
• 2+ years experience in an information security discipline

Location
• Dublin, Ireland
• Only applicants with the right to work in the EU will be considered for this vacancy.