Security Analyst Level 2

Integrity360 is the largest specialist IT security consultancy in the country. We secure the networks, infrastructure and information of some of the leading companies in both Ireland and the UK. We are passionate about what we do, so too must any new recruits.

Integrity360 is currently expanding at a rapid rate – could you be the newest member to our team? We are fun and dynamic and believe in constant learning and development. Progression is a typical buzz word within the organisation. #Whatsthecatch

You should be passionate about the security field with a strong desire to learn. In this role you will be expected to perform traffic analysis, intrusion analysis and detection of threats based on system alerts and logs. Additional duties would include the authoring of security procedures. You will be required to monitor third party security related websites, forums, and mailing lists for information regarding new threats and vulnerabilities. The security analyst will verify security events as security incidents; correlate and collate the information; and develop, edit, and deliver security reports to enterprise-level customers. The role requires flexibility and the ability to work extra hours when the business calls for it. A good knowledge of Information Security is required for this role.

• Review security events to evaluate the risk they present in the context of the environment they are in.
• Analyse logs for anomalies in the environment.
• Perform in-depth investigation on confirmed security incidents.
• Identify, contain and eradicate threats in the environment.
• Perform analysis of malicious code and activity.
• Tuning security toolsets.
• Document complete details and evidence of investigation and providing reports to incident stakeholders.
• Responsible for generating reports to the partners and stakeholders showing internal threat landscape.
• Document work efforts and update the tool documents that are already in place.
• 24 x 7 on-call support on a rota basis may form part of the role.

• Experience working with security event detection tools like IPS, SIEM, DLP, Anti-virus, etc.
• Ability to perform event correlation, host/ network threat analysis.
• Ability to manage multiple incidents and make effective decisions under high pressure environment.  
• Experience in performing analysis on network pcaps and documents for malicious activity or codes.  
• Conceptual knowledge in Networks and Network Security.
• Understanding of Network infrastructure hardware and protocols (TCP/IP, switches, bridges, routers, proxy servers, VPN concentrators).
• Understanding of Security protocols (IPSec), and encryption technologies (3DES, AES, SHA2, TLS).
• Understanding of basic security principles such as Confidentiality, Availability, Integrity.
• Familiar with security best practices.
• A process of on-going certification for the benefit of the business and for self-development is encouraged .
• Review the adequacy of the security controls and their ability to protect the information system and its information.
• Experience with Splunk is a plus.
• Experience using SIEM & IPS solutions is a plus.
• Strong Microsoft Word & Microsoft Excel skills required.

• The ability to demonstrate a dynamic interest in solving information security issues; analytical ability to break down problems into constituent parts.
• Flexibility to handle several information security issues simultaneously.
• The ability to communicate well and demonstrate a good understanding of customer issues together with the aptitude to develop a natural empathy with customers in relation to their business requirements.
• The ability to work in a team environment and on your own initiative and the desire to work on escalated issues from other team members.  
• Demonstrate an ability to audit an IT Environment and provide security & process recommendations.
• Aptitude for solving problems and acting on own initiative.
• Excellent leadership skills.
• Highly motivated with a willingness to learn new technologies.
• Effective communicator with a positive and confident attitude both written and verbally.
• Good written skills with capability to create well formatted, grammatically correct documents.
• Fluent English speaker.
• A strong team player with a flexible approach.
• Can demonstrate consistency in their work attitude.

• Security industry certifications: GSEC, GCIH, GCFA or similar security certifications.
• 2+ years in an Incident Handling role or a CSIRT role.
• Ideal candidates will possess a working knowledge of Intrusion Prevention System (IPS), SIEM, SOAR & DLP.
• Experience working with threat hunting tools.

• Opportunity to gain experience and knowledge in a key field of expertise
• Further education and training to enhance your skillset
• Opportunities to expand you experience by learning new products or getting involved with internal projects
• A leadership team who have a worthwhile mission and who excel at that mission.
• A chance to work with one of the market leaders in Information Security companies (Winner of the AIB Enterprise of the Year Award 2013, Nominated for EY, EOY 2015, Winner of Best Place to Work in IT – 2016, Winner of MSS Provider of the Year - 2017)
• Joining a Company that is expanding and growing at a rapid rate.