Senior ThreatOps Analyst
Australia, Remote
Ivanti
Ivanti finds, heals and protects every device, everywhere – automatically – so employees can work better from anywhere.Position Overview:
In your capacity as a ThreatOps Analyst at Ivanti, you will serve as an indispensable member of our ThreatOps team, propelling our cloud security efforts to new heights. Your core role will involve active participation in security incident response, where your deep expertise will be instrumental in effectively managing and mitigating security incidents across both Ivanti's cloud and on-premises environments. Your primary focus will be on reinforcing our security posture, elevating our incident response capabilities, crafting detection content to enhance our security detection mechanisms, and aggregating invaluable threat intelligence. This role stands as a linchpin in safeguarding the resilience and security of Ivanti's infrastructure and services, encompassing both cloud and on-premises aspects.
Responsibilities:
- Minimum of 2 years of hands-on experience in incident response, with a focus on Azure & AWS cloud environments.
- Experience with incident response tools and technologies, including Azure Security Center, Microsoft O365, Guard-Duty, and SIEM solutions.
- Monitor Azure environments for security incidents, assess their severity, and initiate the incident response process.
- Develop and maintain incident response plans and playbooks specific to Azure environments.
- Conduct investigations into major and critical security incident affecting Ivanti.
- Proactively hunt for threats within Ivanti Infrastructure and identify advanced persistent threats (APTs).
- Possess extensive knowledge of security concepts including cyber-attacks, techniques, threat vectors, risk management and incident management.
- Solid understanding and experience in EDR, Networks, IPS/IDS, Mail Gateways and SIEM.
- Experience in handling / managing cyber security incidents and using security tools / SIEM to analyze and recommend counter measures.
- Evaluate new technologies and processes that enhance security capabilities.
- Assist in post-incident analysis and documentation to improve incident response processes.
- Knowledge of scripting languages (e.g., Python, PowerShell) for automation and tool
- Stay updated on the latest trends and developments in cloud security and related Collaborate with cross-functional teams to prioritize and address identified vulnerabilities.
- Support the Digital Forensic & Investigations Team in high tech investigations in the form of electronic evidence, computer forensic analysis, e-mail analysis, data recovery and network assessments in support of our Legal, Talent, Confidentiality, and Insider Threat organizations.
Qualifications and Skills:
- Bachelor's degree in Computer Science, Information Security, or a related field.
- Strong understanding of cloud computing concepts and familiarity with major cloud platforms (AWS and Azure).
- Basic knowledge of networking protocols, security technologies, and security frameworks.
- Familiarity with common security vulnerabilities, threats, and attack vectors.
- Experience with security tools such as vulnerability scanners, SIEM, IDS/IPS, and antivirus systems is a plus.
- Knowledge of scripting languages (e.g., Python, PowerShell) for automation and tool development.
- Strong analytical and problem-solving skills, with an attention to detail.
- Excellent communication skills, both written and verbal.
- Ability to work effectively both independently and within a team.
#L1-SHUBHANGI
* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰
Tags: Antivirus Automation AWS Azure Cloud Computer Science EDR IDS Incident response IPS PowerShell Python Risk management Scripting SIEM Threat intelligence Vulnerabilities
More jobs like this
Explore more InfoSec / Cybersecurity career opportunities
Find even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.
- Open Information Security Specialist jobs
- Open Ethical hacker / Pentester H/F jobs
- Open Information Systems Security Officer (ISSO) jobs
- Open Principal Security Engineer jobs
- Open Senior Cyber Security Engineer jobs
- Open Cyber Security Architect jobs
- Open Manager Pentest H/F jobs
- Open Cyber Security Specialist jobs
- Open Product Security Engineer jobs
- Open Staff Security Engineer jobs
- Open Cybersecurity Analyst jobs
- Open Chief Information Security Officer jobs
- Open Senior Information Security Analyst jobs
- Open Consultant infrastructure sécurité H/F jobs
- Open Cybersecurity Consultant jobs
- Open Senior Penetration Tester jobs
- Open IT Security Analyst jobs
- Open Consultant SOC / CERT H/F jobs
- Open Security Specialist jobs
- Open Senior Information Security Engineer jobs
- Open Security Researcher jobs
- Open IT Security Engineer jobs
- Open Sr. Security Engineer jobs
- Open Cybersecurity Specialist jobs
- Open Security Operations Analyst jobs
- Open Windows-related jobs
- Open CISM-related jobs
- Open Network security-related jobs
- Open Pentesting-related jobs
- Open ISO 27001-related jobs
- Open Agile-related jobs
- Open Application security-related jobs
- Open GCP-related jobs
- Open Vulnerability management-related jobs
- Open IAM-related jobs
- Open Analytics-related jobs
- Open CISA-related jobs
- Open Threat intelligence-related jobs
- Open SaaS-related jobs
- Open APIs-related jobs
- Open Security assessment-related jobs
- Open Java-related jobs
- Open Malware-related jobs
- Open Forensics-related jobs
- Open DevOps-related jobs
- Open IDS-related jobs
- Open Security Clearance-related jobs
- Open CEH-related jobs
- Open EDR-related jobs
- Open Kubernetes-related jobs