Job Description :Cyber Operations AnalystIntroduction:Cybercrime and cyber-attacks against institutions are growing considerably in quality, quantity, and complexity, targeting both private industry and national critical infrastructure. However,
Job Description
Cyber Operations Analyst
Introduction
Cybercrime and cyber-attacks against institutions are growing considerably in quality, quantity, and complexity, targeting both private industry and national critical infrastructure. However, a holistic approach across all security disciplines is required to ensure that these are mitigated successfully. Successful attacks against organizations can result in significant disruptions to business transactions, operations, and client activities, as well as regulatory scrutiny, reputational harm and brand tarnishment.
As a global bank, Barclays is at the crosshair of cyber criminals. As an organization that process financial transactions, stores and transmits sensitive client information, and participates in the global financial marketplace, Barclays is an attractive target to organized criminals, hackers and hacktivists. Barclays can expect to see a continued increase in the number and sophistication of cyber-attacks against it, its partners, and its employees and clients. This is made more of a critical issue given the banks strategy of providing more and more of its services and products online and via mobile channels.
The developments described above require a different and much more proactive and intelligence led cyber defence, compared to the normal reactive and incident based defences built over the last 20 years. The modern Chief Security Office develops and operates tools that are used by internal groups for protecting information, understanding internal systems and networks in order to prevent attacks, and analysing information to determine whether the organization is under attack. In addition, other tools used in the day to day management of employees or systems may be managed by the Chief Security Office if they are related to its mission of protecting the assets of the company and its customers
What will you be doing?
This role will be a 24x7x365 analyst position [Shifted pattern] within our Joint Operations Centre in Pune, part of a globally distributed operational team that performs the following mission-critical functions:
1stline analysis, triage and escalation of security events within the SIEM, through to escalation and remediation of detected security incidents.1stline point of contact, providing command, control and reporting support to Incident Management teams for all security incidents.Understand when to escalate events and to whom; track and report security incidents to remediate and drive closure.Utilise existing processes and technologies in place, to detect, respond and prevent malicious electronic attacks to Barclays networks and network estate; provide guidance to identify attacks, attackers suitable mitigation techniques.Interprets, analyses and reports all events and anomalies in accordance with cyber security related directives, including initiating, responding and reporting discovered event.Analysis of Intelligence information to ensure enhanced detection, as well as improvement of functional capability.Support identification, enhancement, improvement and delivery of monitoring and response methods and processes, to reduce risk to the Organisation.
What Were Looking For
- Proficiency in SIEM technologies & usability in a Large & Complex Computing Environment.
- Analysis and response of detected security incidents, timely escalation and drive to ensure the closure of incidents.
- Incident Response skills including proficiency in PCAP Capture, Network Analysis, and Traffic Patterns.
- Identify attacks and malware (Trojans, Ransomware, etc.) analysing event data generated from proxy, endpoints, IDS, MPS, network devices etc.
- Proficiency in Phishing Threat Types (Targeted Spear, Broad-based SPAM, Targeted Industry, Whaling, etc.)
Skills That Will Help You In The Role
- Proficiency of Operating System fundamentals and OS Security (Windows & Linux);
- Proficiency in Networking Principles, Protocols, & Practices;
- Understanding of traditional ITIL concepts Incident, Change and Problem management;
- Understanding of Cloud Security Principles (AWS/Google/Azure)
- Understanding of Open Source network analysis tools, and Open-source intelligence tools (OSINT).
- In-depth knowledge of the Cyber Kill-Chain, Intelligence-driven defence and security architectures.
- Ability to help write concise reports based on complex data with accuracy, brevity, and speed.
- Understanding of Ethical Hacking from the perspective of a Blue-team member; the countermeasures and mitigation controls which can be implemented to minimise the threat landscape and risk to an organisation.
- Appreciation of End Point security products including firewalls, Anti-virus and network access control.
- Appreciation for programme and project management methodologies.
- Experience delivering technical detection and response programs and initiatives is also desirable.
- Active SANS certifications in the areas of network, incident handling, malware and forensic analysis (GREM, GCIA, GCFA, GCIH) are desirable, but not essential.
- Strong working knowledge of Splunk and the Splunk Query Language.
- Understanding and experience of reverse-engineering malware would also be beneficial, but is not essential.
- A good technical understanding of the threats against the financial industry from both the physical and Cyber threat domains.
Where will you be working?
Pune
Be More at Barclays
At Barclays, each day is about being more as a professional, and as a person. Be More @ Barclays represents our core promise to all current and future employees. Its the characteristic that we want to be associated with as an employer, and at the heart of every employee experience. We empower our colleagues to Be More Globally Connected, working on international projects that improve the way millions of customers handle their finances. Be More Inspired by working alongside the most talented people in the industry, and delivering imaginative new solutions that are redefining the future of finance. Be More Impactful by having the opportunity to work on cutting-edge projects, and Be More Valued for who you are.
Interested and want to know more about Barclays? Visit home.barclays/who-we-are/ for more details.
Our Values
Everything we do is shaped by the five values of Respect, Integrity, Service, Excellence and Stewardship. Our values inform the foundations of our relationships with customers and clients, but they also shape how we measure and reward the performance of our colleagues. Simply put, success is not just about what you achieve, but about how you achieve it.
Our Diversity
We aim to foster a culture where individuals of all backgrounds feel confident in bringing their whole selves to work, feel included and their talents are nurtured, empowering them to contribute fully to our vision and goals.
Our Benefits
Our customers are unique. The same goes for our colleagues. That's why at Barclays we offer a range of benefits, allowing every colleague to choose the best options for their personal circumstances. These include a competitive salary and pension, health care and all the tools, technology and support to help you become the very best you can be. We are proud of our dynamic working options for colleagues. If you have a need for flexibility, then please discuss this with us.