Security Analyst

• Planning building and automating security workflows using automation tools.
• Integrating data sources, creating alerts, and investigating.
• Developing detailed documentation for IR playbooks and executing them.
• Manage and coordinate cyber incidents.
• Conduct in-depth analysis of security events and incidents to identify the root cause and scope.
• Operate and maintain the SIEM system including fine tuning to optimize detection and response capabilities.
• On-demand threat-hunting activities on cloud environments and SaaS applications.
• Research new attack vectors, including identification, and related mitigations across the enterprise IT landscape.
• Be a knowledge source for new and emerging threats, incident response processes, and threat-hunting activities.
• Evaluate & recommend new security technologies and help shape the product with your insights and expertise.

• Over 2 years experience in similar roles.
• Understanding of the lifecycle of advanced security threats, attack vectors, and methods of exploitation.
• Hands-on experience working with SIEM technologies.
• Familiarity with common data and log sources for monitoring, detection and analysis (e.g., Event Logs, firewall, EDR).
• Strong technical understanding of network fundamentals, common internet protocols, and system and security controls.
• Familiarity with log file formats and understanding of log collection methods including scripting capabilities.
• Experience with working with a cloud based environment.
• Fluent English (written, spoken) – a must.

Rapyd