Security Analyst

Hi, we're glad you're here! We are hiring to our Aviva Services Excellence Centre! Take a look at our job description - maybe it suits you or one of your friends?

Aviva is seeking a Security Analyst who will be responsible for day-to-day security threat monitoring and analysis. You will manage security incidents and review security alerts for next steps coordination purposes. You will work with Global Cyber Incident Management team and Security teams across Aviva to perform containment and eradication related activities.

What will you be doing?

• Work in a 24/7 Global SOC Team that operates in 12h shifts

• Real-time monitoring of IT security events & incidents

• Categorizing and prioritizing IT security events & incidents

• Analysis of detected IT security events & incidents

• Gathering key information, analyzing and interpreting them for escalation to relevant support lines (including vendors) and asset/business owners

• Utilizing all required GSOC tools

• Finding correlation between detected cyber threats

• Providing recommendations for fine-tuning of correlation rules

• Taking active part in the fine-tuning meetings as GSOC SME

• Creating playbooks, response plans, technical and process documentation 

• Participating in GSOC related projects as SME

• Onboarding of new joiners 

• Performing other tasks on manager’s request

What we’re looking for:

• Minimum 1 year of relevant security experience

• Written and spoken English at B2/C1 level

• Good knowledge of the security incident management process in accordance with the NIST standard

• Ability to organize work independently and make key decisions autonomously during the analysis of security incidents and prioritize them accordingly

• Knowledge of the basics and main assumptions in the field of network (network protocols, ISO/OSI model, etc.)

• Very good knowledge of internal processes (e.g. logging and monitoring) and escalation mechanisms within GSOC

• Knowledge of the functioning of IT services at the ITIL Foundation level (change management, incident management, request management, etc.)

• Knowledge of the internal architecture of Windows/Linux/iOS systems (e.g.  Active Directory)

• Very good knowledge of threat types, currently used cyber attack techniques

• Very good knowledge of the Mittre Attachment matrix and the Cyber Kill Chain methodology

• Good knowledge of security tools (DLP, EDR, SIEM, Firewall, IPS/IDS, etc.)

• Ability to gather and present a large amount of technical information in a concise and understandable form for colleagues

• Finding dependencies between security events detected in all GSOC-supported tools

• Proactive approach in the context of security incident analysis

• Skills and knowledge to provide appropriate recommendations for fine-tuning correlation rules  

• OSINT Knowledge                                                                 

In Aviva Services Excellence Centre, we provide:  

• Contract of employment  

• Performance Bonus  

• Private medical care (ENEL-MED)  

• Emotional support consultations  

• Cafeteria system of benefits (e.g. MultiSport card)  

• Additional parent privileges:  
  - baby leave – 6 weeks leave for second parent  
  - shortened working time after parental leave  

• Employer-funded group insurance  

• Employee Shares Plan  

• Extra day off for birthday  

• Paid time off to volunteer  

• Additional leave acquired over the years in the company (even 5 days more in a year)  

• Wellbeing Leave - additional two weeks paid leave after 10 years of service  

• Access to the e-learning platforms  

• Internal employee referral program  

• Hybrid working model from Poland with a few days in Warsaw office per month (team meetings, onboarding, onsite trainings etc). 

• Attractive office location in Warsaw - Gdański Business Center  

• Additional entitlements for people with disabilities - Work Without Barriers  

• Work environment that promotes diversity - Diversity Charter  

Do you see yourself in Aviva Services Excellence Centre? Be sure to apply!   

Aviva is for everyone!   

As a signatory to the Diversity Charter, Aviva applies a policy of equal treatment and creates a work environment that is friendly to people with disabilities. We do not require from candidates the date of birth, marital status and attached photos to your CV. We encourage all individuals regardless of gender to apply.  

Most of our people are smart working – spending also time in our office - combining the benefits of flexibility, with time together with colleagues.  

We’re inclusive - we welcome applications from people with diverse backgrounds and experiences.  

Excited but not sure you tick every box? Research tells us that women, particularly, feel this way. So, regardless of gender, why not apply and try! 

To find out more about current job offers at Aviva take a look here.