Cyber Threat and Vulnerabilty Analyst

Describe the Department

Regional SOC - APAC

Responsibilities

• Train, coach, mentor, and groom Tier 1 analysts in the SOC  
• Update and improve Security Operations playbooks used in the SOC  
• Continuously work to baseline the SIEM platform, update correlation rules and watchlists to improve detection efficiency  
• Implement support for new data sources, build and modify parsing rules and verify data collection and retention works as intended 
• Manage incident response process, incl. engagement with service- and process owners, management, and affected users during incident response phase 
• Perform lessons learned following incident closure activity
  
  

Qualifications

• A bachelor's degree in computer science, Cybersecurity, Information Technology, or a related technical field is commonly required. Some employers might consider equivalent experience and certifications in lieu of a bachelor's degree.
• Relevant coursework in areas like network security, operating systems, information assurance, and cyber forensics is beneficial.
• Demonstrated experience in incident response, including investigation, containment, eradication, and recovery.
• Experience with security information and event management (SIEM) systems (e.g., Splunk, Sentinel) for monitoring, analyzing, and responding to security events.
• Experience with various endpoint protection platforms (EPP) and endpoint detection and response (EDR) tools
• Experience with vulnerability management and understanding of common attack types and TTPs (Tactics, Techniques, and Procedures).
• Experience with log analysis from various sources (firewalls, intrusion detection/prevention systems, operating systems, applications).
• Experience with threat intelligence and its integration into security operations.
• Experience with ticketing systems (e.g., ServiceNow).
• Minimum 2+ years of experience in security operations, cybersecurity analysis, or a similar role is generally expected. Many listings specify at least 2 years of experience in a 24x7 Security Operations Center (SOC) environment.
  
  

Competencies

• Skilled in analytical and problem-solving techniques to investigate and resolve security incidents.
• Proficiency in developing detection logic and creating advanced alerts in SIEM platforms.
• Thorough understanding of security concepts, including intrusion detection/prevention, malware analysis, and threat intelligence integration.
• Familiarity with cloud security (AWS, Azure, GCP) and related monitoring tools.
• Knowledge of scripting languages (e.g., Python, PowerShell) for automation of tasks.
• Experience with threat hunting methodologies and tools.
• Proficient in articulating complex technical concepts to both technical and non-technical individuals.
• Ability to document and explain technical details clearly and concisely.
• Effective communication and collaboration abilities to work well with team members and other departments.
• Ability to prioritize and manage multiple tasks in an environment with fluctuating demands.
• Mentoring and leadership skills to guide junior analysts.
  
  

What We Offer

Training and Certifications: Offer opportunities for continuous learning and professional development. This can include:

Funding for industry certifications such as CISSP, GCIH, CEH, Security+, CySA+, and vendor-specific certifications (e.g., Microsoft, AWS).

Internal training programs and mentorship opportunities.

Provide opportunities to work with the latest security tools and technologies, allowing analysts to expand their skill sets.

Challenging and Meaningful Work:

Essential Role: Highlight the critical role the Senior SOC Analyst plays in protecting the organization from cyber threats and ensuring business continuity.

Complex Incident Handling: Involve senior analysts in handling complex and critical security incidents, allowing them to utilize their advanced skills.

BEWARE – RECRUITMENT FRAUD

It has come to our attention that there are a number of fraudulent emails from people pretending to work for Vestas. Read more via this link, https://www.vestas.com/en/careers/our-recruitment-process

DEIB Statement

At Vestas, we recognise the value of diversity, equity, and inclusion in driving innovation and success. We strongly encourage individuals from all backgrounds to apply, particularly those who may hesitate due to their identity or feel they do not meet every criterion. As our CEO states, "Expertise and talent come in many forms, and a diverse workforce enhances our ability to think differently and solve the complex challenges of our industry". Your unique perspective is what will help us powering the solution for a sustainable, green energy future.

About Vestas

Vestas is the energy industry’s global partner on sustainable energy solutions. We are specialised in designing, manufacturing, installing, and servicing wind turbines, both onshore and offshore.

Across the globe, we have installed more wind power than anyone else. We consider ourselves pioneers within the industry, as we continuously aim to design new solutions and technologies to create a more sustainable future for all of us. With more than 185 GW of wind power installed worldwide and 40+ years of experience in wind energy, we have an unmatched track record demonstrating our expertise within the field.

With 30,000 employees globally, we are a diverse team united by a common goal: to power the solution – today, tomorrow, and far into the future.

Vestas promotes a diverse workforce which embraces all social identities and is free of any discrimination. We commit to create and sustain an environment that acknowledges and harvests different experiences, skills, and perspectives. We also aim to give everyone equal access to opportunity.

To learn more about our company and life at Vestas, we invite you to visit our website at www.vestas.com and follow us on our social media channels. We also encourage you to join our Talent Universe to receive notifications on new and relevant postings.