Cyber Security Incident Response Analyst
Role details
Job location
Tech stack
Job description
The Senior Cyber Security Incident Response Analyst is responsible for leading and executing advanced incident response, analysis, containment, and remediation activities across enterprise environments. The purpose of this role is to work as part of the cyber security team to implement an organised approach to addressing and managing security breaches or cyber-attacks. Performing investigations and providing reports with root cause analysis, which will be used as strategic programs of work to improve the overall security assurance of dentsu. This role requires deep technical expertise in threat analysis, digital forensics, and security operations, as well as strong communication skills for stakeholder engagement and reporting., * Lead investigations of complex security incidents, including malware outbreaks, phishing campaigns, insider threats, and advanced persistent threats (APTs).
-
Engage with other teams to mitigate cyber security threats, improve processes, and improve security posture
-
Analysing threat intelligence for relevancy, impact, and exposure.
-
Perform root cause analysis and develop containment and eradication strategies.
-
Conduct log analysis utilising SIEM, IPS, Firewall, Proxy, AV and other to determine the extent of a compromise and for investigation purposes.
-
Trawl vulnerability intelligence datasets to provide early warning of threats to the business.
-
Utilise threat intelligence to identify indicators of compromise (IOCs) and tactics, techniques, and procedures (TTPs)
-
Maintain current knowledge of tools, techniques, and procedures of attackers
-
Keep up to date on current Advanced Persistent Threats and mitigation techniques.
-
Conduct research pertaining into cyber threats, campaigns, vulnerabilities, and technological advances in combating unauthorised access.
-
Threat Hunting - Investigate alerts, anomalies, errors, intrusions, and malware for evidence of compromise.
-
Take ownership of managing cyber security call queues ensuring tickets are closed based on defined SLOs.
-
Assist Head of Cyber Security with daily, weekly, monthly management tasks
-
Assist Head of Cyber Security with reporting tasks
-
Required to act as on call analyst for one week every 6 weeks
Requirements
-
Must possess excellent analytical, troubleshooting, and problem-solving skills.
-
Possess a high level of capabilities in research, data collation and data analysis
-
Excellent organisation and time management skills.
-
Able to handle and manage multiple deadlines, and to effectively perform during high pressure or stressful situations.
-
Good presentation skills both verbal and written on both technical and non-technical information. With strong attention to detail.
-
Very good organisational and communication skills, with the ability to build relationships with peers.
-
Experience producing security documentation and other technical analysis reports
-
Experience working in a team-oriented, collaborative environment.
-
Experience managing and mentoring junior analysts
-
Demonstrates a good knowledge and understanding of cyber security attack techniques and threats, with a strong technical background.
-
Ability to quickly identify indication of compromise and take appropriate action to contain, mitigate or eradicate.
Benefits & conditions
This is a permanent role with occasional travel to one of our offices in Manchester or London, NW1.
As well as a competitive salary, you'll enjoy a benefits package that you can tailor to your needs.
Inclusion and Diversity
At dentsu, we embrace diversity and inclusion, valuing the unique perspectives and contributions of every individual. We believe that diversity fuels creativity and innovation, benefiting our employees, partners, and communities.
