Senior Analyst - SOC Monitoring OT Cybersecurity

Overview

Job Description

The Security Operations Centre team at CPX is a cross‑functional Operations/Engineering team involved at all phases of our application and service release lifecycle that embraces the Sec Ops communication, collaboration, and integration method. The Senior Security Analyst is responsible for leading security monitoring efforts, analyzing various log sources, responding to security incidents, and enhancing the overall security operations program within elements of CPX/Client technology.

• Validate the incidents escalated by Tier 1 SOC Security Analysts.
• Perform second level analysis of threat conditions and determine which security issues may have an impact on the organization services and information.
• Conduct research, analysis and correlation across wide variety data sets (e.g., indicators and warnings).
• Provide recommendations for incident handling, and security monitoring and validation of physical security.
• Identify weaknesses in software, hardware and networks.
• Analyze and communicate with stakeholders the threats associated with every incident.
• Coordinate with relevant stakeholders to validate network alerts.
• Conduct analysis of log files, evidence and other information to determine best methods for identifying attackers.
• Characterize and analyze network traffic to identify anomalous activity and potential threats to network resources.
• Excellent communication skills: written, verbal and interpersonal.
• Strong team player with a customer‑service orientation, ability to forge relationships at all levels of the company and across diverse cultures.
• Ethical, honest, fair, and with high integrity.
• Excellent organizational and time‑management skills.
• Exhibits ownership of projects and assigned tasks.
• Has an in-depth understanding of the incident response process, analysis, alerts, rules, etc.
• Highly analytical, strong problem‑solving skills, and ability to thrive in an energetic, fast‑paced, high‑growth security team environment.
• Must be able to pass all security clearances.
• Quickly owns and handles tasks accurately, highly dependable, and self‑motivation.

• Strong team player with a customer‑service orientation, ability to forge relationships at all levels of the company and across diverse cultures.
• Ethical, honest, fair, and with high integrity.
• Excellent communication skills: written, verbal and interpersonal.
• Excellent organizational and time‑management skills.
• Exhibits ownership of projects and assigned tasks.
• Has an in‑depth understanding of the incident response process, analysis, alerts, rules, etc.
• Highly analytical, strong problem‑solving skills, and ability to thrive in an energetic, fast‑paced, high‑growth security team environment.
• Must be able to pass all security clearances.
• Quickly owns and handles tasks accurately, highly dependable, and self‑motivation.
• Takes proper care and administration to configure, implement, and maintain DLP technologies.

• Related security certifications (i.e. CCNA, Network+, Security+, CISSP, CISM, GICSP, GCIH, GCIA, GRID)
• Min 6‑8 years experience one or more of the following:
  • Skilled in identifying trends and patterns from analyzing host‑based, network‑based security logs.
  • Used network investigation tools such as Wireshark and other provenance tools such as ELK, Rekall, Ghidra, Flare
    
    VM to analyze log sources, memory, malware, to understand intrusion vectors and attacker tactics, techniques and procedures.
  • Provide support and guidance to improve security requirements for security operations.
  • Experience with Windows, Linux, Unix and understanding of NDS/HIDS.
  • Monitoring of SIEM alerts with tools such as Splunk and EDR solutions.
  • Bachelor’s degree in engineering, computer science, information systems or any other quantitative field.

Role Level: Mid‑Level
Work Type: Full‑Time
Country: United Arab Emirates
City: Abu Dhabi
Company Website:
Job Function: Information Technology (IT)
Sector: Computer and Network Security