Job Summary:
We are seeking an experienced
Cyber Threat Detection and Response Analyst
to play a key role in protecting enterprise systems, networks, and data from evolving cyber threats. This position involves continuous monitoring, proactive threat intelligence, and hands-on incident response to reduce cyber risks and enhance overall security posture.
Key Responsibilities:
* Investigate and respond to security incidents, including performing root cause analysis, containment, eradication, and system recovery.
* Develop and implement effective threat detection and response strategies.
* Conduct ongoing threat intelligence research to stay ahead of emerging attack trends.
* Collaborate with IT and business stakeholders to ensure strong preventive measures are in place.
* Partner with the incident response team to document and report findings.
* Create and maintain accurate security documentation, including incident reports and threat assessments.
* Prepare detailed reports on incidents, vulnerabilities, and recommended remediation actions.
* Take on additional responsibilities such as
threat hunting, detection rule development, and security platform maintenance
when required.
Essential Skills & Experience:
* Proven hands-on experience with key security tools: antivirus, IDS/IPS, email security, firewalls, and content filtering.
* Strong knowledge of network infrastructures, operating systems, application architectures, and data management technologies.
* Deep expertise in network security, incident response, and threat detection.
* Proficiency with scripting (Python, PowerShell, Bash) for automation and security tooling.
* Familiarity with frameworks and platforms such as
MITRE ATT&CK
and the
Cyber Kill Chain
.
* Strong experience with SIEM technologies, threat intelligence, and vulnerability assessments.
* Knowledge of
OT/ICS security
environments is a strong advantage.
* Minimum of
5 years of professional experience in cybersecurity
.
Desirable Skills:
* Cybersecurity certifications (e.g., CISSP, SANS, or equivalent).
* Ability to conduct digital forensic investigations on compromised systems and endpoints.
* Experience analysing malware, phishing campaigns, and network intrusions to assess impact.
Qualifications:
* A relevant degree in Computer Science, Cybersecurity, Information Systems, or equivalent professional experience.