Cyber Security Analyst
  • United Arab Emirates Dubai
  • Dautom
1 year before
31.01.2024
Protect and Defend
Cyber Defense Analysis
Job Description

Job Description:

Skills:: Risk Assessment, Business Continuity, Cyber Security Technologies (Hand-On), IS Policy & Procedure, workflow, Cloud Technology, Azure, System Security, Incident Investigations, and Security Assessments.

Preferred Certifications: ISO 27K, 31K, CEH, CISA, Microsoft, Firewalls, Cloud.

Cyber Security Assessment:

Conduct Risk Assessment, Business Continuity, and Technical Maturity, Across the Cyber Security Landscape.

Plan, design, review, and document appropriate security solutions, such as firewalls, intrusion detection and prevention systems, encryption protocols, access controls, and other technologies.

Perform Secure Configuration Hardening and document the findings into an action plan.

Perform Evaluation and POCs of Cyber Security Technologies.

Threat Hunting, Response & Mitigation:

Assess events from various cyber security technologies, identify threats, investigate, and suggest detailed action plans to mitigate the same. Conduct VA/PT to identify the weakness in the overall digital landscape.

Incident response and management:

Develop incident response plans and procedures and provide guidance and support during security incidents to mitigate risks and minimize potential damages.

Training and awareness:

Develop training and awareness content. Deliver security training sessions to employees to enhance their understanding of security risks.

Documentation and reporting:

Prepare and Update Cyber Security Policy and Procedures as required.

Prepare detailed reports, documentation, and presentations outlining assessment findings, recommendations, and security improvement

Quick response
Required Knowledge
  • K0002   Knowledge of risk management processes (e.g., methods for assessing and mitigating risk).
  • K0004   Knowledge of cybersecurity and privacy principles.
  • K0005   Knowledge of cyber threats an`d vulnerabilities.
  • K0013   Knowledge of cyber defense and vulnerability assessment tools and their capabilities.
  • K0624   Knowledge of Application Security Risks (e.g. Open Web Application Security Project Top 10 list)
Required Skills
  • S0027   Skill in determining how a security system should work (including its resilience and dependability capabilities) and how changes in conditions, operations, or the environment will affect these outcomes.
  • S0036   Skill in evaluating the adequacy of security designs.
  • S0078   Skill in recognizing and categorizing types of vulnerabilities and associated attacks.
  • S0147   Skill in assessing security controls based on cybersecurity principles and tenets. (e.g., CIS CSC, NIST SP 800-53, Cybersecurity Framework, etc.).
Required Abilities
  • A0066  Ability to accurately and completely source all data used in intelligence, assessment and/or planning products.
  • A0123  Ability to apply cybersecurity and privacy principles to organizational requirements (relevant to confidentiality, integrity, availability, authentication, non-repudiation).
  • A0159  Ability to interpret the information collected by network tools (e.g. Nslookup, Ping, and Traceroute).