IT Secuirity Specialist
3m
TAGUIG, PHL
5d ago

Position Description

The person filling the Cybersecurity Operations Center Senior Analyst role will join 3M’s Information Security, Risk and Compliance organization as part of a team focused on the ongoing development and operations of 3M’s global Cybersecurity Operations Center.

You will help support day to day operations, monitoring and responding to security threats and risks, provide in-depth incident evaluation & analysis, and will provide pro-

active threat hunting and intelligence research. This position will be operating in our Cybersecurity Operations Center; some weekend and after hours work will be required.

  • Provide advancedCyber Incident analysis, handling and response activity
  • Work in conjunction with security solutions specialist to provide feedback and requirements onsecurity technologies including Intrusion Detection and Prevention Systems, Firewalls and Log Analysis, SIEM, Network Behavior Analysis Tools, Antivirus, Network Packet Analyzers, malware analysis, and forensic tools

    Create and maintain automation scripts for incident data examination

    Work with security solutions specialists to identify points where incident detection or response can be further automatized, or possible scenarios where a use case is giving false positives

    Collaborate onThreat Hunting activities to evaluate and detect potential threat activity

    Provide digital forensic capabilities, relevant artifact identification and collection, and initial analysis

    Author Global Standard Operating Procedures and training documentation as needed

    Assist in training SOC team members

    Basic Qualifications :

    University Degree in MIS, Computer Science, or related field from a recognized college or university or equivalent work experience

    2-3 years of security experience with at least of 4 years total IT background

    IT Security Operations Center environment experience (incident response) with security monitoring experience

    Experience with SIEM administration and content (use cases) development

    Experience with any of the following tools : Firewall, IPS, and / or Endpoint Protection

    Fluent in speaking and writing English

    Preferred Qualifications :

    CISSP, SANS Certifications or other equivalents

    Experience performing Linux and Windows server administration

    Experience working with scripting languages such as Python

    Understanding and experience with Agile Framework

    Ability to identify and assess foreseeable internal and external risks to the security, confidentiality, and availability of information and systems using a documented process

    Strong problem solving, analytical, technical, and troubleshooting skills

    Ability to interact with vendors, clients, and internal teams in a professional and articulate wayvia spoken and written word

    Experience working in IT at a global organization

    Apply
    Add to favorites
    Remove from favorites
    Apply
    My Email
    By clicking on "Continue", I give neuvoo consent to process my data and to send me email alerts, as detailed in neuvoo's Privacy Policy . I may withdraw my consent or unsubscribe at any time.
    Continue
    Application form