أخصائي دفاع سيبراني

The role is responsible for investigating, analysing, and responding to cybersecurity incidents to derive useful information to mitigate system and network vulnerabilities. Analysing multi-source information about cybersecurity threats intelligence to derive and report indicators that help organizations detect and predict cyber incidents and protect systems and networks from cyber threats. Key Responsibilities Correlate incident data to identify vulnerabilities and report cyber incidents and trends to inform cyber defence. Track and document cyber incidents from initial detection to final resolution. Analyse log files from multiple sources to identify possible threats to network security. Triage incidents to identify specific vulnerability, determine scope, urgency and potential impact. Perform initial collection of images to relevant forensic standards; inspect to evaluate possible mitigation and remediation measures. Perform incident response tasks to support deployable incident response teams including forensic collection, intrusion correlation, tracking, threat analysis and system remediation. Analyse network alerts from multiple sources to determine possible causes. Write and publish cyber defence techniques, guidance, and post incident reports to appropriate constituencies. Employ defence-in-depth principles and practices in line with organizational policies. Collect intrusion artefacts and use discovered data to mitigate potential cybersecurity incidents within the organization. Write and publish reviews to learn and promulgate lessons from cybersecurity events. Monitor external data sources to keep understanding of currency of cybersecurity threats up to date and determine which security issues may have an impact on the organization. Coordinate incident response functions. Coordinate with threat intelligence analysts to correlate threat assessment data. Identify and select most effective sources of information to assist with incident investigation. Provide expert technical support to resolve cyber defence incidents. Support law enforcement, explaining incident details and forensic analysis as required. Identify information gaps in threat intelligence and assess their implications for the organization. Monitor and report on validated threat activities. Minimum Bachelor’s degree in Cybersecurity / Information Security / Computer Engineering / Systems Engineering / Telecommunication Engineering / Information Technology / Computer Science. Minimum 1 year in Cybersecurity field or 6 months from Tamheer background in Cybersecurity field. Professional Certifications related to Cybersecurity field is preferred. Knowledge of network components and their operations. Knowledge of cybersecurity across various platforms of network security controls and methods. Knowledge of the likely operational impact on an organization of cybersecurity breaches. Knowledge of appropriate data backup and cyrecovery methods and solutions, including testing. Knowledge of best practices for incident response and incident management. Knowledge of best practice network traffic analysis methods. Knowledge of packet-level analysis. Knowledge of system and application security threats and vulnerabilities