include Operational Technology (OT) and Industrial Control Systems (ICS) as well as on-premises and
cloud enterprise networks. This includes analysis of device communication, forensic analysis of Windows
or Linux systems and servers, timeline analysis of activity on these endpoints, user permission and
authentication audits, log analysis, and malware identification/triage.
An ideal candidate for this position will be a proactive self-starter who has experience with system
administration, Windows and Linux operating systems (OS) mechanics including filesystem structures,
disk and memory forensics, cyber aware Operational Technology or Control Systems operators,
commonly used mechanisms for maintaining security persistence, privilege escalation, and lateral data
movement, operating system log analysis, and triaging suspicious file artifacts for unusual behavior. This
role requires a familiarity with what routine OS activities and common software/user behavior looks like
in the context of forensic artifacts or timelines. Analysts should also be familiar with common categories
and formats of host-based indicators of compromise (IOCs) and how/where they can be leveraged to
identify known-bad files/activity on an endpoint. Candidate will utilize the Cyber Kill Chain and
synthesize the entire attack life cycle along with creating detailed reports on how impacts may or have
occurred.
Responsibilities
- Support SOC team in operating and performing duties in a Security Operations Center (SOC) to
and threat hunting activities.
- Develop and utilize analytics on the security information and event management (SIEM)
collection across servers and network devices.
- Asses Security Technical Implementation Guides (STIGs) compliance and completion.
- Utilize asset mapping tools to verify connected inventory.
- Handle Information Assurance Vulnerability Management (IVAM) notifications.
- Evaluate network structures and device configurations for security risks, offering
intrusions.
- Analyze network traffic and system logs to identify malicious activities, vulnerabilities exploited,
- Conduct comprehensive technical analyses of computer evidence, research and integrate new
Qualifications
- (Journeyman level) At least 3 years, (Junior level) applicable 1 to 2 years of experience in
analysis.
- Proficient in analyzing cyber-attacks, with a deep understanding of attack classifications, stages,
and procedures.
- Applied knowledge of network topologies, protocols (e.g., TCP/IP, ICMP, HTTP/S, DNS, SSH,
Security Center.
- Capable of attack reconstruction based on network traffic, integrating Threat Intelligence, and
multiple locations.
Desired Skill sets
- Knowledge of Operational Technology (OT) or Industrial Control Systems (ICS)
- Strong analytical and troubleshooting skills
- Able to provide expert content development in Splunk Enterprise Security using tstats and data
- Understands how to utilize knowledge of latest threats and attack vectors to develop correlation
- Experience in other tools and protocols as applicable such as Nessus, Endgame, CrowdStrike,
- Review logs to determine if relevant data is present to accelerate against data models to work
- Familiar with the operations and functions of Nessus or security center management
- Can assist and provide technical input to research, discover, implement hardware and software
- Understands importance and fundamentals of logistics and evidence handling
- Certified Ethical Hacker (CEH), GIAC Certified Incident Handler (GCIH), or relevant IT technology
Examples of other certifications include:
o Offensive Security Certified Professional (OSCP)
o GIAC Response and Industrial Defense (GRID)
o CERT Certified Computer Security Incident Handler
o ECC CEH (Electronic Commerce Council Certified Ethical Hacker)
o GCIH (GIAC Certified Incident Handler)
o GISF (GIAC Information Security Fundamentals)
o CISSP (Certified Information System Security Professional)
- Additional certifications at an equivalent may also be considered.
-
Yokosuka Clark Creative Solutions Full time¥800,000 - ¥1,250,000 per yearThe Cyber Analyst team member is responsible for the analysis of all technology devices which may include Operational Technology · (OT) and Industrial Control Systems (ICS) as well as on-premises and cloud enterprise networks. · Support SOC team in operating and performing dutie ...
-
Tokyo キンドリルジャパン ¥900,000 - ¥1,200,000 per yearキンドリルについて · 私たちは、世界が日々依存しているミッション・クリティカルなテクノロジー・システムの設計、構築、管理、およびモダナイズを行っています。 では、なぜキンドリルで働くのでしょうか? 私たちは常に前進しており、社員、お客様、そしてコミュニティーのために、より公平でインクルーシブな世界を築けるよう常に努力を続けています · 職務 · SOC (Security Operation Center)で活躍するセキュリティ技術者を募集します。 · 【業務内容】 SOC ソリューションでの小中規模プロジェクトにおける提案・導入・運用局面を、技術者兼 ...
-
神奈川県 横浜市, BoschCyber Security Consultantとして、組み込みおよび自動車のサイバー セキュリティに関する分野でお客様をサポートします。 · コンサルティングには、次の内容が含まれますが、これらに限定されません: · ...
-
Tokyo Kyndryl JapanWe are looking for a security engineer to work in the SOC (Security Operation Center). · ...
-
Tokyo, Izumi Garden Tower Avanade Japan K.K. Company本:- · クライアントが抱えるサイバーセキュリティ上の課題を明確化し、昨今急増するサイバー犯罪からお客様の企業価値を守るためにサイバーセキュリティソリューションの実現を技術的知見に基づいて行っていただきます。 ...
-
Tokyo, Sumida-ku, Japan () Astroscale私たちのリアルな様子はこちらから→ 株式会社アストロスケールの会社情報 - Wantedly · Export Control Laws · ...
-
Tokyo RAPSYS TECHNOLOGIES PTE LTD ¥9,000,000 - ¥12,000,000 per yearWe are seeking a skilled and detail-oriented Cyber Security Analyst to join our team in Tokyo. · ...
-
Tokyo RAPSYS TECHNOLOGIES PTE LTD ¥150,000 - ¥300,000 per year+We are seeking a skilled and detail-oriented Cyber Security Analyst to join our team in Tokyo. · +Lead and coordinate the response to cybersecurity incidents... · ,valid_job:1} (this is not exactly valid JSON - there should be no white space or line breaks inside this string) ...
-
Greater Tokyo Area Kaigen ¥4,500,000 - ¥8,000,000 per yearWe are seeking an experienced Japanese Bilingual Cyber Security Incident Handler to strengthen our defense against evolving cyber threats. · ...
-
Tokyo Rakuten $80,000 - $120,000 per yearThe Cyber Security Defense Department (CSDD) is responsible for safeguarding all Rakuten companies and users from cyber threats, ensuring the security and integrity of Rakuten Group's global internet services. · Lead and coordinate the response to cybersecurity incidents. · Analy ...
-
Tokyo Rakuten ¥800,000 - ¥1,100,000 per yearThe Cyber Security Analysis department is responsible for safeguarding all Rakuten companies and users from cyber threats. · Lead and coordinate the response to cybersecurity incidents. · Analyze logs from various sources to identify threats. · ...
-
Tokyo プルデンシャル・ジャパン・テクノロジー Prudential Japan Technology ¥6,000,000 - ¥12,000,000 per yearThe Cyber Security Operation Center(CSOC) is looking for a talented junior analyst. · Follow Incident Response procedures to perform preliminary analysis. · Respond to and investigate security incidents including malware infections phishing attempts unauthorized access other pote ...
-
Cyber Security
3週間前
Greater Tokyo Area Randstad JapanA stable Global company is currently hiring for an IT Cyber security- bilingual Japanese & English is a must. · The local Cybersecurity team is looking to expand it's local IT security Governance team. · International environment with about 40% members from all over the world li> ...
-
Cyber Analyst
1ヶ月前
Shinjuku Darktrace Full time¥300,000 - ¥600,000 per yearWe are looking for someone with a keen eye for detail and strong deduction capabilities to analyze and resolve issues. · ...
-
Cyber Analyst
4日前
Tokyo Darktrace ¥5,500,000 - ¥8,500,000 per yearA Cyber Analyst investigates and communicates with customers on cyber operations and how Darktrace positively impacts their businesses. · ...
-
Cyber Analyst
1ヶ月前
Greater Tokyo Area Darktrace ¥5,000,000 - ¥8,000,000 per yearAs a Cyber Analyst at Darktrace, you will investigate and communicate with customers on cyber operations and how Darktrace positively impacts their businesses. · ...
-
Tokyo, Japan DIAIncThe Cyber Security Specialist will lead cyber security improvement activities in various locations including Kawasaki plant and Higashi-ogishima KD packing plant. · To lead shopfloor cybersecurity activity in MFTBC. · Establishing process/standards for shopfloor cyber security re ...
-
Chūō Astellas Pharma ¥50,000 - ¥100,000This position will join a team who are responsibility for managing security operations, developing automation for threat detection, and working towards 'best in industry' incident response. · ...
-
Chūō アステラス製薬 ¥50,000 - ¥100,000· As a Cyber Security Engineer you will play a critical role in safeguarding our organization's information systems and data. · • · Security Operations Center (SOC) Management ·
-
Tokyo myGwork - LGBTQ+ Business CommunityWe are looking for a security engineer to work in the SOC (Security Operation Center). · Who You Are · 【必須スキル】 · セキュリティ · ...
-
Tokyo Kyndryl Full time¥4,000,000 - ¥12,000,000 per yearWe are looking for a security engineer to work in the SOC (Security Operation Center). Responsible for completing the proposal, implementation, and operation phases of small and medium-sized projects in SOC solutions as a technician and PM. Responsible for customer facing to ensu ...
