Senior Cybersecurity Analyst

Job Description

About the role
As part of the Cybersecurity Operations team, you will help to secure our intellectual property and other digital assets of the Digital Industries Software (DI SW) division of Siemens from cybersecurity threats.  You will join a cyber-focused team that handles the holistic landscape of protecting a software research and development business.

What are my responsibilities?
As an Senior Analyst, you will

Monitor and review notable events in Splunk Enterprise Security dashboards
Investigate alerts for relevance, severity, and impact and escalate incidents
Triage escalated events
Provide user communication and outreach
Participate in investigations and critical incident handling frequently extending to multiple teams and management
Operationalize threat intelligence and perform proactive hunting exercises
Create and present incident, threat intelligence and after-action reports to management
To do this, on a daily basis, you will work with:

Splunk, and the Splunk Enterprise Security module
MS Teams, Outlook, and other collaboration & communication tools
ServiceNow service desk
Security Orchestration, Automation & Response (SOAR) tools
Scripting in PowerShell and/or Python
Endpoint, Detection and Response (EDR) Tools such as Tanium, Carbon Black, MDE or Crowdstrike
Vulnerability management tools such as Qualys, Tanium etc.
Next-Gen Antivirus logs such as Trend, MS Defender, etc.
Analyzing Network traffic logs
CyberChef, Wireshark or other relevant analytical tools
Linux and Windows servers, Open Stack, and configuration management tools
Skills into digital forensics using tools such as Encase or others
Regular Expressions for pattern solving and filters
What do I need to qualify for this job?
A well-qualified candidate has

B.S. or equivalent degree, focused on cybersecurity, or equivalent knowledge
5+ years’ experience in cybersecurity or in IT operations with security focus
3+ years Incident Response/Handling Experience
CISSP, GIAC certifications such as GSEC, GMON, etc. and/or Splunk certifications required
Ability to work both independently as well as in a global team setting
Outstanding analytical, problem solving, communication, planning, and documentation skills
Strong attention to detail and time management skills
Excitement to learn and a curious mindset
May have knowledge or experience in some of the following areas:
In addition to being familiar with the tools above, some other topics you can bring to our team include

Reverse engineering of malware
Sandboxing technologies
DEVOPS or DEVSECOPS experience for creating the tools our team uses
Open Stack, Kubernetes, or other grid computing technologies
AWS and/or Azure cloud security knowledge
Configuration Management in Ansible, Puppet, PowerShell, or MS Endpoint Configuration Manager
Data analytics and reporting tools: R, NumPy, MS Power BI, Tableau

Organization: Digital Industries

Company: Siemens Industry Software (India) Private Limited

Experience Level: Experienced Professional

Job Type: Full-time

Can't find what you are looking for?

Let's stay connected

Can't find what you are looking for?