include Operational Technology (OT) and Industrial Control Systems (ICS) as well as on-premises and
cloud enterprise networks. This includes analysis of device communication, forensic analysis of Windows
or Linux systems and servers, timeline analysis of activity on these endpoints, user permission and
authentication audits, log analysis, and malware identification/triage.
An ideal candidate for this position will be a proactive self-starter who has experience with system
administration, Windows and Linux operating systems (OS) mechanics including filesystem structures,
disk and memory forensics, cyber aware Operational Technology or Control Systems operators,
commonly used mechanisms for maintaining security persistence, privilege escalation, and lateral data
movement, operating system log analysis, and triaging suspicious file artifacts for unusual behavior. This
role requires a familiarity with what routine OS activities and common software/user behavior looks like
in the context of forensic artifacts or timelines. Analysts should also be familiar with common categories
and formats of host-based indicators of compromise (IOCs) and how/where they can be leveraged to
identify known-bad files/activity on an endpoint. Candidate will utilize the Cyber Kill Chain and
synthesize the entire attack life cycle along with creating detailed reports on how impacts may or have
occurred.
Responsibilities
- Support SOC team in operating and performing duties in a Security Operations Center (SOC) to
and threat hunting activities.
- Develop and utilize analytics on the security information and event management (SIEM)
collection across servers and network devices.
- Asses Security Technical Implementation Guides (STIGs) compliance and completion.
- Utilize asset mapping tools to verify connected inventory.
- Handle Information Assurance Vulnerability Management (IVAM) notifications.
- Evaluate network structures and device configurations for security risks, offering
intrusions.
- Analyze network traffic and system logs to identify malicious activities, vulnerabilities exploited,
- Conduct comprehensive technical analyses of computer evidence, research and integrate new
Qualifications
- (Journeyman level) At least 3 years, (Junior level) applicable 1 to 2 years of experience in
analysis.
- Proficient in analyzing cyber-attacks, with a deep understanding of attack classifications, stages,
and procedures.
- Applied knowledge of network topologies, protocols (e.g., TCP/IP, ICMP, HTTP/S, DNS, SSH,
Security Center.
- Capable of attack reconstruction based on network traffic, integrating Threat Intelligence, and
multiple locations.
Desired Skill sets
- Knowledge of Operational Technology (OT) or Industrial Control Systems (ICS)
- Strong analytical and troubleshooting skills
- Able to provide expert content development in Splunk Enterprise Security using tstats and data
- Understands how to utilize knowledge of latest threats and attack vectors to develop correlation
- Experience in other tools and protocols as applicable such as Nessus, Endgame, CrowdStrike,
- Review logs to determine if relevant data is present to accelerate against data models to work
- Familiar with the operations and functions of Nessus or security center management
- Can assist and provide technical input to research, discover, implement hardware and software
- Understands importance and fundamentals of logistics and evidence handling
- Certified Ethical Hacker (CEH), GIAC Certified Incident Handler (GCIH), or relevant IT technology
Examples of other certifications include:
o Offensive Security Certified Professional (OSCP)
o GIAC Response and Industrial Defense (GRID)
o CERT Certified Computer Security Incident Handler
o ECC CEH (Electronic Commerce Council Certified Ethical Hacker)
o GCIH (GIAC Certified Incident Handler)
o GISF (GIAC Information Security Fundamentals)
o CISSP (Certified Information System Security Professional)
- Additional certifications at an equivalent may also be considered.
-
Yokosuka Clark Creative Solutions Full time¥800,000 - ¥1,250,000 per yearThe Cyber Analyst team member is responsible for the analysis of all technology devices which may include Operational Technology · (OT) and Industrial Control Systems (ICS) as well as on-premises and cloud enterprise networks. · Support SOC team in operating and performing dutie ...
-
Tokyo キンドリルジャパン ¥900,000 - ¥1,200,000 per yearキンドリルについて · 私たちは、世界が日々依存しているミッション・クリティカルなテクノロジー・システムの設計、構築、管理、およびモダナイズを行っています。 では、なぜキンドリルで働くのでしょうか? 私たちは常に前進しており、社員、お客様、そしてコミュニティーのために、より公平でインクルーシブな世界を築けるよう常に努力を続けています · 職務 · SOC (Security Operation Center)で活躍するセキュリティ技術者を募集します。 · 【業務内容】 SOC ソリューションでの小中規模プロジェクトにおける提案・導入・運用局面を、技術者兼 ...
-
Greater Tokyo Area Kaigen ¥4,500,000 - ¥8,000,000 per yearWe are seeking an experienced Japanese Bilingual Cyber Security Incident Handler to strengthen our defense against evolving cyber threats. · ...
-
Tokyo Michael Page ¥900,000 - ¥1,200,000 per yearサイバーセキュリティのキャリアをスタート · グローバルなチームでの経験 · サイバーセキュリティトピックのサポート · グループサイバーリジリエンスと日本のステークホルダー間の調整 · ローカルエコシステムの知識収集 · 日本国内のビジネス変革プログラムやデジタルプロジェクトのセキュリティ確保 · サイバーセキュリティ活動の調整 · サイバーセキュリティメトリクスの可視化 · 重要なサイバーインシデント時のサポートと調整 · サイバーガバナンスへの参加 · サイバーセキュリティに関するコミュニケーション · サイバーセキュリティに関する基本的な知識 · ...
-
Tokyo プルデンシャル・ジャパン・テクノロジー Prudential Japan TechnologyThe Cyber Security Operation Center(CSOC) is looking for a talented junior analyst. The CSOC is a global organization protecting all of Prudential, with staff in the US, Ireland, and Japan. · Follow Incident Response procedures to perform preliminary analysis, correlating securit ...
-
Tokyo プルデンシャル・ジャパン・テクノロジー Prudential Japan Technology ¥6,000,000 - ¥12,000,000 per yearThe Cyber Security Operation Center(CSOC) is looking for a talented junior analyst. · Follow Incident Response procedures to perform preliminary analysis. · Respond to and investigate security incidents including malware infections phishing attempts unauthorized access other pote ...
-
Tokyo スキルハウス・スタッフィング・ソリューションズ株式会社 ¥800,000 - ¥1,200,000 per yearA US based General Insurance firm is looking for a Cyber Security Incident Handler to join the Japan Information Security Office (ISO) Division. · ...
-
Tokyo, Tokyo BUGMANIA ¥5,500,000 - ¥8,100,000 per yearThis is a full-time hybrid role for a Cyber Security Consultant. The Cyber Security Consultant will be responsible for daily tasks such as conducting vulnerability assessments, monitoring and managing security operations, ensuring information security, and providing expertise in ...
-
130 - Cyber Security
2週間前
Tokyo, Japan DIAInc ¥5,000,000 - ¥10,000,000 per yearThis is a cyber security improvement activity role at Kawasaki plant and Higashi-ogishima KD packing plant. · ...
-
Tokyo, Japan AheadGroup ¥120,000 - ¥180,000 per yearThis opportunity lies within the Cyber Security and Defense Department (CSDD) of a global leader in digital innovation, dedicated to providing top-tier security solutions. · Automate defense mechanisms to ensure a fast and efficient response to security alerts/incidents. · Implem ...
-
Chūō アステラス製薬 ¥50,000 - ¥100,000· As a Cyber Security Engineer you will play a critical role in safeguarding our organization's information systems and data. · • · Security Operations Center (SOC) Management ·
-
Tokyo Kyndryl Full time¥4,000,000 - ¥12,000,000 per yearWe are looking for a security engineer to work in the SOC (Security Operation Center). Responsible for completing the proposal, implementation, and operation phases of small and medium-sized projects in SOC solutions as a technician and PM. Responsible for customer facing to ensu ...
-
Tokyo Kyndryl Full time¥4,000,000 - ¥8,000,000 per yearWe are looking for a Cyber Security Advisor to join our team. The successful candidate will be responsible for providing security advice and support to our customers, as well as leading projects and managing teams. · At least 5 years of experience in a specific security area · Bu ...
-
Tokyo, Japan AheadGroup ¥6,000,000 - ¥12,000,000 per yearWe are seeking a Cyber Security Project Manager for one of our Global E-Commerce clients. In this role, you will oversee multiple security projects, ensuring they align with the organization's broader goals and contribute to developing a stronger project management culture within ...
-
Yokosuka, Kanagawa SAIC ¥12,000,000 - ¥20,000,000 per yearThis is an opportunity oriented towards SAIC's Army Enterprise IT activities and INDOPACOM initiatives. · ...
-
Tokyo Rakuten Mobile, Inc. Full time¥1,200,000 - ¥3,000,000 per yearWe are currently seeking a Lead Researcher to join our team of top-notch researchers and engineers to advance the cutting-edge technology in cybersecurity in the telecommunications industry and create impactful solutions for our clients. · ...
-
Tokyo Google ¥1,040,000 - ¥1,500,000 per yearAs an Incident Response Consultant, you will provide incident response, assessment, transformation, managed detection and response, and training services with support. You will help organizations detect and respond to threats and reduce the overall impact of business risk before, ...
-
Tokyo Woven ¥6,000,000 - ¥12,000,000 per yearWe are looking for a Cyber Security Management System Expert to lead CSMS implementation at Woven and support the integration of CSMS into Woven company-level management system. The ideal candidate will have experience conducting internal audits, assessments, and readiness checks ...
-
Tokyo Lumen Technologies ¥3,200,000 - ¥6,800,000 per yearWe are igniting business growth by connecting people, data and applications – quickly, securely, and effortlessly. Together, we are building a culture and company from the people up – committed to teamwork, trust and transparency. · As a Senior SOC Analyst,you will learn how to w ...
-
sr security analyst
2週間前
Tokyo Lumen Technologies ¥5,000,000 - ¥10,000,000 per yearWe are looking for top-tier talent as Senior SOC Analysts in our APAC Security Operations Center (SOC) responsible for operation, maintenance, and monitoring of Security portfolio. · ...
-
Tokyo ESET Full time¥3,000,000 - ¥6,000,000 per yearAt ESET, our Security Monitoring Specialist carries out security monitoring services, in close collaboration with Global teams for assigned environments. Working closely with the Country Manager, Japan, this role is integral to the security operations centre team. · ...
