Location
Pune | India
Job description
1. Purpose of the job:
Cyber security is a top priority for AkzoNobel as for any global organization operating in the cyberspace. Our objective is to protect our information and digital assets (IT and OT) by reducing our cyber risk exposure in order to pursue our business objectives.
As part of the new cyber security program, supported by the ExCo, we have recently redefined our security governance in line with the evolution of threat landscape and modern best practices. In this regard the new Information Security function, under responsibility of the CISO and part of the IT (Information Technology) organization, is responsible for Information and cyber security for the entire organization covering Cyber Risk Management & Compliance, Security Architecture, Security Operations and Cyber Security Awareness and Training.
Security Operations covers all the operational aspect of cyber security within Second Line of Defense including the three core cyber security processes: Vulnerability Management, Threat Monitoring, and Cyber Security Incident Response and all operational aspects of security in the Second Line of defense.
The Cyber Security Analyst is part of the Security Operations team and supports the identification, investigation and resolution of cyber security alerts and incidents. In addition, supports the assessment of vulnerabilities and their resolution.
We seek for a person with strong competences and experience in working in SOC (Security Operations Centre) with a strong analytical thinking and with a solid technical background in cyber security, IT and OT technologies and soluti ons. Responsibilities and autonomy will be in line with the seniority of the candidate.
In this regards we could consider candidates with a solid IT background, with a passion and strong interest with cyber security who are willing to develop their competences in this domain.
2. Key responsibilities:
In this role, you be involved in some of the following activities:
- Assess vulnerabilities on IT and OT assets, identify priorities and support IT and OT operations team in their resolution.
- Support the process of threat monitoring by analyzing alerts and ongoing issues.
- Support the process of cyber security incident response in all phases ( preparation, detection, and analysis containment, eradication and recovery, and post-incident activities) in line with our internal processes.
- Support the process of firewall log analytics and firewall rules exceptions approval.
- Execute or support security investigations, forensics analysis, pent-tests, and red/blue team sessions.
- Support the monitoring of KRI (Key Risk Indicators) and KPI (Key Performance Indicators) and the creation of cyber security reports
- Provide your support for gathering information from our MSSP and other external sources and publish cyber security advisories and bulletins
The Cyber Security Analyst will be assigned tasks and responsibility in line with her/his seniority and experience. Our objective it to build a strong internal Security Operations team and empower our Cyber Security Analysts in growing their responsibilities and level of autonomy.
Typical day to day examples of incidents decisions escalations that the jobholder needs to manage:
- You monitor the exposure to software vulnerabilities for both IT global network and factories worldwide. You regularly assess vulnerabilities, produce reports, recommend priority actions, and assign objectives to IT and OT operations teams to resolve the vulnerabilities and reduce the cyber risk for AkzoNobel. On this perspective you support the IT and OT Service managers in addressing the highest priority actions and monitor their execution
- In collaboration with our MSSP you analyze the Security dashboards/SIEM to identify ongoing alerts and incidents and manage it in line with our processes
- You manage cyber security incidents in all phases ( preparation, detection, and analysis containment, eradication and recovery, and post-incident activities) in line with our internal processes.
- You collect indications and recommendations from our security solutions on how to improve our security posture. Support our Security Architecture team for identifying improvement area and actions. You support internal stakeholders in IT/OT infrastructure and operations in implementing the recommended actions.
- You perform or support the execution of penetration tests, forensic investigation, red/blue team exercise.
- You collect/exchange Threat intelligence information with external sources and stakeholders
- You provide your support in measuring KRI (Key Risk Indicators) and KPI (Key Performance Indicators).
3. Job requirements:
Experience / Education
- Degree or Master degree in, cyber security, computer science, computer engineering, or equivalent work experience is a plus
- Experience in Information Security and more specifically in Security Operations Team
- Understanding of the most common security technologies and solutions like firewalls, IDS/IPS, EDR, NDR, IAM, SIEM, Vulnerability Management solutions. Antivirus.
- Experience to analyze cyber security incidents, run or support investigations on networks and systems and issue SIR (Security Incident Report).
- Experience in executing or supporting forensic investigation and knowledge of forensics investigation tools is considered as a plus.
- The ability to identify and analyze vulnerabilities identify and prioritize resolutions
- The ability to think critically and innovatively about the security solutions that can keep computer network, infrastructure and service secure.
- Experience in performing or supporting penetration test
- Experience and knowledge with ICT and OT technologies, product and solutions
- Knowledge of adversary TTP (Tactic, Technique, Procedures) like MITRE ATT&CK
- The following certifications (or other equivalent) are considered a plus:
- Certified Ethical Hacker (CEH)
- Computer Hacking Forensics Investigator (CHFI)
- EC-Council Certified Security Analyst (ECSA)
- Licensed Penetration Tester (LPT)
- Experience with OT Security in manufacturing industry is considered is considered a plus.
Key Generic Competencies
- Proactiveness, energy and passion for cyber security
- Good communication skills, able to engage with many stakeholders in the organization
- Strong analytical and problem solving capabilities, structured thinker and ability to 'dig deep' where needed
- Ability to work under pressure, in a multinational and multicultural environment
At AkzoNobel we are highly committed to ensuring an inclusive and respectful workplace where all employees can be their best self. We strive to embrace diversity in a context of tolerance. Our talent acquisition process plays an integral part in this journey, as setting the foundations for a diverse environment. For this reason we train and educate on the implications of our Unconscious Bias in order for our TA and hiring managers to be mindful of them and take corrective actions when applicable. In our organization, all qualified applicants receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, age or disability.
Job tags
Salary
