Senior Security Analyst (Remote)
  • Ukraine Kyiv
  • Pharmbills
1 year before
31.01.2024
Protect and Defend
Cyber Defense Analysis
Job Description

We're US-based outstaffing company with 700+ specialist in Ukraine, Georgia, EU, USA and Uzbekistan and currently looking for Senior Security Analyst (~5 years’ experience) on staff with the below skillsets, and he/she can work with the junior analysts (including ops staff assigned security roles in addition to any other roles)
Skills:
- Security Operations: Experience with security incident response, vulnerability management, and security monitoring tools.
- Network Security: Understanding of network protocols, firewalls, intrusion detection/prevention systems (IDS/IPS), and network security architecture.
- Threat Intelligence: Knowledge of threat landscapes, emerging security trends, and the ability to analyze and respond to security incidents.
- Risk Assessment: Proficiency in conducting risk assessments, identifying vulnerabilities, and recommending mitigation strategies.
- Security Frameworks: Familiarity with industry-standard frameworks such as NIST Cybersecurity Framework, ISO 27001, and PCI DSS.
- Security Tools: Experience with security tools such as SIEM (Security Information and Event Management), endpoint protection, data loss prevention (DLP), and intrusion detection systems (IDS).
- Incident Handling: Ability to investigate and respond to security incidents, perform forensic analysis, and implement incident response procedures.
Certifications: (Good to Have)
- Certified Information Systems Security Professional (CISSP)
- Certified Ethical Hacker (CEH)
- Certified Information Security Manager (CISM)

GIAC Certified Incident Handler (GCIH) – Preferred
- Certified Information Systems Auditor (CISA)
- CompTIA Security+

Quick response
Required Knowledge
  • K0001   Knowledge of computer networking concepts and protocols, and network security methodologies.
  • K0005   Knowledge of cyber threats an`d vulnerabilities.
  • K0013   Knowledge of cyber defense and vulnerability assessment tools and their capabilities.
  • K0042   Knowledge of incident response and handling methodologies.
  • K0046   Knowledge of intrusion detection methodologies and techniques for detecting host and network-based intrusions.
  • K0070   Knowledge of system and application security threats and vulnerabilities (e.g., buffer overflow, mobile code, cross-site scripting, Procedural Language/Structured Query Language [PL/SQL] and injections, race conditions, covert channel, replay, return-oriented attacks, malicious code).
  • K0106   Knowledge of what constitutes a network attack and a network attack’s relationship to both threats and vulnerabilities.
  • K0324   Knowledge of Intrusion Detection System (IDS)/Intrusion Prevention System (IPS) tools and applications.
  • K0339   Knowledge of how to use network analysis tools to identify vulnerabilities.
Required Skills
  • S0025   Skill in detecting host and network based intrusions via intrusion detection technologies (e.g., Snort).
  • S0054   Skill in using incident handling methodologies.
  • S0078   Skill in recognizing and categorizing types of vulnerabilities and associated attacks.
  • S0167   Skill in recognizing vulnerabilities in security systems. (e.g., vulnerability and compliance scanning).
Required Abilities
  • A0015  Ability to conduct vulnerability scans and recognize vulnerabilities in security systems.
  • A0066  Ability to accurately and completely source all data used in intelligence, assessment and/or planning products.
  • A0128  Ability to apply techniques for detecting host and network-based intrusions using intrusion detection technologies.