L2 Analyst

Responsibilities:

• Researches threats using intelligence sources and determines impact to customer
• Compile intelligence reports on a set basis for customer consumption
• Initial analysis of security intelligence feeds
• Participation in Security Incident Management Process / Guidelines for severe intelligence findings.
• Gathering, analysis, and communication of threat intelligence through the intelligence process
• Review daily cyber threat intelligence reports and feeds to identify latest and emerging threats
• Participate in hunting activities based on indicators of compromise or suspicious anomalous activity based on data alerts or data outputs from various toolsets
• Initial forensics investigation for escalated incidents
• Periodically update, maintain and tune the use case framework and response playbooks, provide implementation and tuning instructions to tools admin for implementation
• Fine-tuning and whitelisting EDR solutions to eliminate false positives
• Perform IOC sweeps and blocking when required

Experience:
• 5-8 Years in similar role

Educational Qualification:

• Strong analytical and problem-solving skills
• Experience of TIP, SIEM, SOAR and Vulnerability Assessment technologies
• Experience with offensive security tools and latest threat actors tactics and techniques
• Experience in malware analysis, log analysis, and digital forensics
• Experience in incident response and remediation
• Experience in use cases and playbooks design
• Good knowledge of scripting languages such as Python
• Knowledge of MITRE ATT&CK Framework
• Experience in Open-Source Intelligence gathering

To Apply:
▪ Send CV to recruitment@gpa.qa

Contact Details:
📞: +974 5051 1234
☎: +974 44 1234 00

Deadline: 5th February 2022

Only shortlisted applicants will be contacted.