ინფორმაციული უსაფრთხოების ანალიტიკოსი
2xP PRIORITY Hash Bank
თარიღები: 11 სექ - 24 სექ
მდებარეობა: თბილისი
დასაქმების ფორმა: სრული განაკვეთი
მივლინება: არა
ინფორმაციული ტექნოლოგიები:  ანალიტიკოსი
ელ.ფოსტა გამოხმაურებისთვის: career@hashbank.ge
Hash Bank is a digital bank with the goal of creating a modern, customer-oriented, revolutionary product that changes the perception of the banking industry. We are looking for experienced, motivated individuals with a strong work ethic and a solid sense of corporate culture who are ready to take on new challenges and join our team.

Hash Bank is pleased to announce a vacancy for the position of Information Security Analyst

Key Responsibilities:
  • Continuously monitor security event logs, network traffic, and security system alerts from various sources like SIEM, NG-Firewalls, WAF, EDR/XDR, PAM, and DLP.
  • Investigate security alerts and anomalies, escalating issues  to the appropriate teams when necessary.
  • Respond to security incidents such as breaches, malware infections, insider threats, DDoS attacks, and other potential security threats.
  • Investigate the scope, nature, and impact of security incidents and take immediate steps to contain them.
  • Coordinate with cross-functional teams for containment measures and system restoration.
  • Respond immediately to cybersecurity incidents and take preventive measures to prevent recurrence.
  • Perform forensic investigations on compromised systems, including log analysis, malware behavior analysis, and network traffic analysis.
  • Use tools (e.g., Wireshark) to collect evidence for investigation and litigation purposes if needed.
  • Conduct post-incident root cause analysis to identify how the incident occurred and propose recommendations to prevent future occurrences.
  • Document each step taken during the investigation of incidents to create detailed incident reports.
  • Provide clear and concise recommendations to IT and management on steps for remediation.
  • Contribute to post-incident reviews to identify gaps in security processes and recommend improvements.
  • Leverage threat intelligence from various internal and external sources to detect and respond to threats faster.
  • Provide insights into current attack vectors and evolving threats that could impact the organization.
  • Develop and maintain incident response playbooks for different types of security incidents.
  •  Collaborate with SOC engineers and developers to automate incident response processes and minimize response time.
  • Continuously improve playbooks and processes based on lessons learned from prior incidents.
  • Conduct training for IT staff and business units on incident response best practices.
  • Ensure all team members and key stakeholders are aware of their roles and responsibilities during an incident.
  • Participate in tabletop exercises and simulation tests to improve organizational readiness.
  • Collaborate closely with information security analysts, cybersecurity teams, IT, DevOps, and third- party vendors to ensure thorough and effective incident responses.
  • Communicate incident findings and recommendations clearly to both technical and non-technical stakeholders.
  • Work with regulatory and law enforcement agencies if necessary during major security incidents.
  • Participate in establishing the best practices of cybersecurity within the bank.
  • Take an active part in developing cybersecurity risk training programs and conduct training to raise awareness among the bank's employees as necessary.
  • Prepare reports on tasks and functions performed, and present them to the supervisor.

Required Skills and Qualifications:
  • 1+ years of experience in cybersecurity incident response, digital forensics, or threat analysis.
  • 1+ years of experience with SIEM platforms (e.g., Splunk, QRadar, ArcSight).
  • Familiarity with security tools such as NG-Firewalls, WAF, EDR/XDR, PAM, DLP.
  • Familiarity with malware analysis techniques and sandbox environments.
  • Exceptional analytical and problem-solving skills, with the ability to quickly assess security alerts, distinguish between false positives and true threats, and take appropriate actions.
  • Hands-on experience responding to security incidents, including investigating and mitigating threats such as malware infections, phishing attacks, and network intrusions.

Soft Skills:
  • Strong investigative mindset and attention to detail.
  • Excellent analytical, problem-solving, and communication skills.
  • Strong teamwork and collaboration abilities, with a commitment to continuous improvement.
 
If you are interested, please send your CV/resume to the following address: career@hashbank.ge. The application deadline is September 24, 2024.

Additional Information:
We hereby inform you that JSC 'Hash Bank' processes personal data of candidates to assess their suitability for current vacancies, in compliance with the requirements outlined in the Law of Georgia on Personal Data Protection. Candidate information may also be processed to assess suitability for future vacancies, with data retention not exceeding 3 years. Processing of special categories of data provided by candidates is contingent upon the nature of their employment obligations and relationship, including final employment decisions. Should you wish to exercise your rights regarding data processing, such as rectification, erasure, or objection, please contact us via email at career@hashbank.ge

JSC 'Hash Bank' conducts candidate selection processes in accordance with anti-discrimination laws, labor regulations, and principles of equal treatment, ensuring non-discrimination on any grounds. If you suspect any form of discrimination, we encourage you to report it to us.