csirt l3 analyst
1 week ago
Job Summary:
The CSIRT L3 Analyst is a senior-level position responsible for leading the identification, assessment, and response to complex cybersecurity incidents. This role requires deep technical expertise, advanced threat intelligence capabilities, and strong leadership skills to coordinate incident response efforts and minimize the impact of security incidents on the organization.
Key Responsibilities:
Incident Response:
- Lead the response to high-severity cybersecurity incidents, including containment, eradication, and recovery.
- Coordinate with internal and external stakeholders to ensure effective communication and response actions.
- Conduct thorough post-incident analysis to identify root causes, impact, and lessons learned.
Threat Detection and Analysis:
- Monitor security alerts from various sources, including SIEMs, IDS/IPS, firewalls, and endpoint detection tools.
- Perform in-depth analysis of network traffic, logs, and other security data to identify potential threats.
- Develop and maintain advanced detection use cases and playbooks.
Forensics and Malware Analysis:
- Conduct digital forensics investigations to gather and preserve evidence for potential legal proceedings.
- Perform malware analysis to understand the behavior, impact, and mitigation strategies for discovered malware.
- Collaborate with law enforcement and other external entities as needed.
Threat Intelligence:
- Collect and analyze threat intelligence from multiple sources to stay ahead of emerging threats.
- Integrate threat intelligence into incident response and detection processes.
- Share relevant threat information with internal stakeholders and peers.
Security Tools and Technology:
- Maintain and enhance the organization's security tools and technologies.
- Evaluate and recommend new security solutions to improve incident detection and response capabilities.
- Ensure security tools are properly configured, updated, and integrated.
Training and Development:
- Mentor and train junior CSIRT members and other IT staff on security best practices and incident response techniques.
- Develop and deliver training sessions and tabletop exercises to improve organizational readiness.
Documentation and Reporting:
- Maintain detailed documentation of incidents, analysis, and response actions.
- Create and present incident reports to management and other stakeholders.
- Develop and update incident response policies, procedures, and guidelines.
Qualifications:
- Minimum of 5-7 years of experience in cybersecurity, with at least 3 years in incident response or a similar role.
- Experience with digital forensics, malware analysis, and threat intelligence.
- Bachelors degree in Computer Science, Information Security, or a related field. Masters degree preferred.
- Relevant certifications such as CISSP, CISM, GIAC (GCIH, GCFA, GCFE), CEH, or equivalent are highly desirable.
- Proficiency with security tools and technologies (e.g., SIEM, EDR, IDS/IPS, firewalls, packet analysis).
- Strong knowledge of networking, operating systems, and common attack vectors.
- Experience with scripting and automation (e.g., Python, PowerShell) is a plus.
- Excellent analytical and problem-solving skills.
- Strong communication and interpersonal skills.
- Ability to work independently and as part of a team.
- Detail-oriented with a strong focus on accuracy.
Vertical:
Technology
-
csirt l2 analyst
1 week ago
Abu Dhabi, Abu Dhabi, United Arab Emirates Duncan & Ross Full timeThe Cyber Security Incident Response Team (CSIRT) Member conducts essential cyber security incident handling activities to defend organization from cyberattacks through timely detection investigation and remediation of potential threats. They are the primary contact for any suspected security incident and work together with SOC team to resolving incidents...
-
csirt l2 analyst
1 week ago
Abu Dhabi, Abu Dhabi, United Arab Emirates Duncan & Ross Full timeThe Cyber Security Incident Response Team (CSIRT) Member conducts essential cyber security incident handling activities to defend organization from cyber-attacks, through timely detection, investigation and remediation of potential threats. They are the primary contact for any suspected security incident and work together with SOC team to resolving incidents...
-
csirt l2 analyst
1 week ago
Abu Dhabi, Abu Dhabi, United Arab Emirates Duncan & Ross Full timeThe Cyber Security Incident Response Team(CSIRT) Member conducts essential cyber security incident handling activities to defend organization from cyberattacks through timely detection, investigation, and remediation of potential threats. They are the primary contact for any suspected security incident and work together with SOC team to resolving incidents...
-
Analyst: Operations
1 week ago
Abu Dhabi, Abu Dhabi, United Arab Emirates Al Etihad Payments Full timeAnalyst: OperationsAl Etihad Payments empowers employees to work in an environment that best promotes their productivity and well-being, while providing high-quality workplace and fantastic professional experience.Get to Know UsAl Etihad Payments is the UAE's designated retail payments entity, dedicated to developing and operating world-class infrastructure,...
-
Sr Analyst Business Transformation
1 week ago
Abu Dhabi, Abu Dhabi, United Arab Emirates ADNOC Schools – Education Company inside ADNOC Oil and Gas Group Full timeDevelop and implement unified Operations Strategy across all operating sites coordinating key activities like developing of 5-year Business Plans, aligning the shutdown plans, managing operations budgets.Lead 5-year Business Planning activities – Technical Assumptions, Shutdown & TAR finalization, Variable cost estimation, production plan validation,...
-
Sr Analyst Business Transformation
1 week ago
Abu Dhabi, Abu Dhabi, United Arab Emirates ADNOC Schools – Education Company Inside ADNOC Oil And Gas Group Full timeDevelop and implement unified Operations Strategy across all operating sites coordinating key activities like developing of 5-year Business Plans, aligning the shutdown plans, managing operations budgets. Lead 5-year Business Planning activities – Technical Assumptions, Shutdown & TAR finalization, Variable cost estimation, production plan validation,...
-
ADIB Job Openings | AML Analyst Jobs in Abu Dhabi
2 months ago
abu dhabi, United Arab Emirates ADIB Full timeADIB Careersis Looking to Hire Following Staff – ADIB Job Openings | AML Analyst Jobs in Abu DhabiAbout ADIBTo ensure compliance and enhance efficiency through executing and monitoring transaction activity performed in branches & Business departments.To advise and provide guidance to COC Teams and other internal stakeholders in matters involving AML &...
-
abu dhabi, United Arab Emirates ADIB Full timeADIB Careersis Looking to Hire Following Staff – ADIB Job Openings | AML Analyst Jobs in Abu DhabiAbout ADIBTo ensure compliance and enhance efficiency through executing and monitoring transaction activity performed in branches & Business departments.To advise and provide guidance to COC Teams and other internal stakeholders in matters involving AML &...
-
SOC L2
2 weeks ago
Abu Dhabi, United Arab Emirates Adecco Full timeThe primary function of an L2 Analyst is to ensure that the SOC team is performing its functions as required and to trouble shoot problematic incidents and events. In summary, the L2 Analyst shall also act as the technical SME and shall report technically to the L3 Analyst. **Responsibilities**: - Work collaboratively with Account Manager for Client...
-
Sr Analyst Business Transformation
14 hours ago
Abu Dhabi, United Arab Emirates ADNOC Schools – Education Company inside ADNOC Oil and GasGroup Full timeDevelop and implement unified OperationsStrategy across all operating sites coordinating key activitieslike developing of 5-year Business Plans, aligning the shutdownplans, managing operations budgets.Lead 5-yearBusiness Planning activities – Technical Assumptions,Shutdown & TAR finalization, Variable cost estimation,production plan validation,...
-
Sr Analyst Business Transformation
2 weeks ago
Abu Dhabi, United Arab Emirates ADNOC Schools – Education Company inside ADNOC Oil and Gas Group Full timeDevelop and implement unified Operations Strategy across all operating sites coordinating key activities like developing of 5-year Business Plans, aligning the shutdown plans, managing operations budgets.Lead 5-year Business Planning activities – Technical Assumptions, Shutdown & TAR finalization, Variable cost estimation, production plan validation,...
-
Analyst - Information Security
3 weeks ago
Abu Dhabi, United Arab Emirates Group 42 Full timeOverview: The main purpose of this role is to collaborate with the Security Operations Centre, Information Security governance team, IT governance team and global business unit stakeholders on the design, deployment and management of core security infrastructure. **Responsibilities**: - Develop and execute delivery plans in collaboration with wider Cyber...
