One team. Global challenges. Infinite opportunities. At Viasat, we’re on a mission to deliver connections with the capacity to change the world. For more than 35 years, Viasat has helped shape how consumers, businesses, governments and militaries around the globe communicate. We’re looking for people who think big, act fearlessly, and create an inclusive environment that drives positive impact to join our team.
What you’ll do
The RTO Security Analyst will form part of the frontline 24x7 team that monitors the network for suspicious activity. Analyst will work to protect the organization by detecting and triaging security alerts. The security analyst’s responsibilities will include detailed incident handling across online and on‑premises infrastructures, determine attack use cases, following escalation process to contain & mitigate security risks. Security analysts will also need to review & address any detected false positives.
The day‑to‑day
* Security monitoring, managing security cases & tickets, security incident analysis, and other security tasks.
* Analysing a variety of security logs to identify actionable events (SIEM reports, alerts, tickets, system, network, security monitoring tools)
* Determine the attack type based on the triage of events collected
* Demonstrate analytical & technical thinking when triaging system & network events
* Ensure all incidents are recorded in the corporate case management platform. Cases must contain a detailed triage will all artifacts and IOCS captured & documented
* Participating feedback into the design, implementation and administration of security tools/ rules to reduce false positives
* Ability to analyse data sets, determine the gaps and understand recommended fixes to RTO lead analyst
What you’ll need
* A University degree level education or equivalent in Information Security, Forensics, or Computer Science; related experience and/or training in the field of IT security monitoring and analysis, cyber threat analysis, and vulnerability analysis.
* Understanding of performing technical level analysis and interpretation of information from SOC systems; incident identification/analysis, escalation procedures, and reduction of false positives.
* 3-5 Years experience within the industry
* Good technical understanding computing protocols, authentication mechanisms & attack TTP’s
* Intermediate knowledge of Information Security fundamentals, technologies, and design principals.
* Understanding or proven experience in securing Windows, Linux, Oracle and VM platforms.
* Excellent verbal and written communication skills in English.
What will help you on the job
* A Global Information Assurance Certification (GIAC) Certified Incident Handler (GCIH), GIAC Certified Intrusion Analyst (GCIA) or GIAC equivalent
* Willingness to learn new skills and be self‑motivated
* Work well under pressure and under your own initiative
#J-18808-Ljbffr