Senior Security Analyst

We are seeking a dedicated Security Analyst to join our Security Operations Center (SOC). This role involves analyzing security events, investigating potential incidents, managing high-priority incidents, and providing comprehensive written root-cause analyses. The ideal candidate will have a strong background in security tooling, SIEM, EDR, threat intelligence, forensics, and reverse engineering, and is passionate about their work and open to suggesting improvements.

Responsibilities

• Monitor and maintain security operations centers (SOC) during working hours across all business regions.
• Analyze security events and investigate potential incidents using security tooling such as SIEM, EDR, threat intelligence, forensics, and reverse engineering.
• Validate and manage high priority incidents, including communication to business stakeholders and facilitating root cause analysis and resolution.
• Utilize tooling to contain and minimize the overall impact of incidents, escalating unresolved incidents to security engineering teams.
• Maintain and continuously update incident response plans and runbooks for efficient incident response.
• Develop operational procedures to implement and continually improve the incident response process.
• Coordinate with other departments on remediation tasks and escalate unresolved incidents.
• Perform post-mortem analysis to identify root causes and design controls to prevent future incidents.
• Write comprehensive investigation reports capturing investigation details and root cause analysis aligned with knowledge of modern Tactics, Techniques, and Procedures (TTPs).
• Collaborate with content production for security awareness.

Minimum Qualifications

• Bachelor’s degree in Computer Science/Engineering/Information Security 
• 3-5 years of experience. 
• Functional knowledge of the MITRE ATT&CK framework.
• Experience with log analysis, malware analysis, and/or forensic analysis.
• Hands-on experience with industry-leading security tools: EDR, SWG, SIEM, MDM.
• Advanced level of English. This will be tested during the selection process

What we are looking for

• Excellent communication skills, with the ability to confidently present findings to technical and non-technical audiences.
• Self-directed, resourceful, and a critical thinker with attention-to-detail and proactive problem-solving skills.
• Ability to self-organize and plan activities with commitment towards results.
• Eager to learn and improve, both from others and through self-learning.
• Passionate about self-improvement and suggesting improvements to processes or activities.
• Flexibility

Nice to have

• InfoSec Certification (e.g., CISSP, CompTIA Sec, CEH, etc)
• Cloud experience (AWS, Azure, GCP) in a production environment.
• Scripting experience (Python, Perl, PowerShell, etc)
• Experience in Blue/Red/Purple team engagements.

About Media.Monks:

Media.Monks is the purely digital operating brand of S4Capital plc that connects 8,600+ digital natives across one global team. We are united by a mission to shift industries forward and pave the path towards ambitious outcomes so our clients and our people can realize their full potential for growth. Our unified model combines solutions in media, data, social, platforms, studio, experience, brand and technology services to help our clients continuously reinvent themselves throughout increasingly rapid cycles of disruption. Our efforts to shape culture, build innovative technologies and unlock the future of growth have earned recognition from numerous esteemed panels: we maintain a constant presence on Adweek’s Fastest Growing lists (2019-22), regular recognition at Cannes Lions, inclusion in AdExchanger’s Programmatic Power Players (2020-23), the title of Webby Production Company of the Year (2021-23), a record number of FWAs, and have earned a spot on Newsweek’s Top 100 Global Most Loved Workplaces 2023. Together, these achievements solidify our experience in digital innovation, excellence in craft, and commitment to personal growth.

While we continue to grow our teams, please be mindful of fraudulent job postings and recruiting activities that may use our company name and information. Please be mindful to protect your personal information, especially your national identification number, and bank account information during a recruiting process. While Media.Monks may reach out to potential candidates via LinkedIn, we will always ask applicants to apply through our website (https://media.monks.com/careers) and will never ask for payment or bank account information during the recruitment process.

• Responsible for resourcing and implementing security controls for your teams processes and systems
• Responsible that all your personnel apply information security in accordance with the established information security policy