Information Security Analyst

Job description

Ref: req41410

POSITION SUMMARY
To provide day-to-day monitoring, support, operation and control of security infrastructure equipment, monitoring and management tools within the DHL organization's security infrastructure and its associated services (Security Operations Center).

RESPONSIBILITIES
• Monitor SIEM, IPS, web application firewall and proxy consoles and logs.
• Re-act to specific incidents e.g. DDoS attacks, phishing events, malware outbreaks, internal network scans, etc.
• Provide RUN support for security technologies (IPS, DDoS), handle incidents, perform changes, etc.
• Follow pre-agreed work procedures and apply pre-approved changes to prevent damage and mitigate outage risks.
• Coordinate and escalate incidents to appropriate support departments for complex reaction activities.
• Reactive assistance in root cause analysis.
• Correlate and coordinate events across all activities in above sections.
• Provide security incident reports to customer and management.

Desired profile

REQUIREMENTS
• Very good TCP/IP knowledge
• Packet analysis skill
• Good Knowledge of standard application's protocols (HTTP, HTTPS, FTP, DNS, …)
• Good knowledge of Linux and Windows Operating systems
• Administration of security technologies (Antivirus, Firewall, IPS...)
• Good understanding of common cyber attack principles
• Good understanding of Information Security principles
• Good English language skills
• Good communication, prioritization and organization skills

Not required but is advantage:
• Telecoms Security experience
• Good knowledge of at least one firewall technology (Checkpoint FW-1, Netscreen/Juniper, Cisco ASA)
• Good knowledge of at least one IPS technology (IBM/ISS, CheckPoint, SourceFire etc.)
• Knowledge of Web Application Firewall technology
• Knowledge of DDoS mitigation technology
• Basic scripting (BASH, Python…)