Cyber Security Analyst (m/f)

As a key member of the central Information Security Services team (“ISS”), the Cyber Security Analyst directly measures and controls overall delivery performance of the Threat Monitoring and Response service (together with MSS Partner). He/she will act as a first escalation point for when security incidents exceed the agreed response SLA and consequently lead containment, eradication, and recovery activities for high(er) severity incidents. As part of the overall SOC team, he/she also contributes to the continuous improvement of monitoring use-cases and predefined response plans and procedures.

Your Challenge:

• Define and maintain criteria for creating monitoring use-cases that are informed by actual Threat Intelligence and relevant to RTL Group and its Business Units (Reference T0020, T0294, T0310, T0312)
• Liaise with ISS Vulnerability Expert to understand where vulnerable information assets exist (K0006, T0292)
• Define and maintain an incident prioritization matrix and ensure consistent incident prioritization (T0155, T0163)
• Proactively hunting for threats and enacting identification, containment, and eradication measures while supporting recovery efforts. (T0047, T0258, T0290, T0296)  
• Act as subject matter expert to provide insight and guidance to colleagues engaging in prevention measures. (T0041, T0175)
• Receive Tier 2/3 incident escalation from detection operations and assist with real-time, continuous (24x7) security event monitoring, response, and reporting. (T0214, T0332)
• Conducting research regarding the latest methods, tools, and trends in digital forensics analysis. (T0164, T0469, T0470, T0503)

Your Profile:

• Required Skills and Expertise
• 3 to 5-years of work experience in IT Security 
• 4-year college/university degree in Information Technology or equivalent experience
• Holding any of the following certifications: GCFA, GCIH, GCFE, GNFA, GREM, or equivalent
• Must have a deep understanding of computer intrusion activities, incident response techniques, tools, and procedures (K0042, S0054)
• Thorough knowledge of digital forensics methodology as well as security architecture, system administration, and networking (including TCP/IP, DNS, HTTP, SMTP) (K001, K0112, K0167, K0332) 
• Knowledge of operating systems including Linux/Unix and Windows (K0060, K0318)
• Excellent communication (verbal, written, visualization and listening) skills (S0370, T0246)

Preferred Skills and Expertise    

• Experience with security assessment tools such as NMAP, Netcat, Nessus, and Metasploit (K0301, K0339)
• Experience with programming languages such as Python, Perl, C/C++, PowerShell, etc. (K0070, K0139)
• Experience with SIEM software such as Splunk, IBM QRadar, MS Sentinel, Exabeam Fusion, Securonix Next-Gen, etc. (S0063, S0173)
• Must be action-oriented and have a proactive approach to solving issues (A0066, A0123)
• Understanding of cloud technologies such as Microsoft Azure IaaS and SaaS (A0121, K0230)
• Ability to communicate technical topics to a non-technical audience (T0395, T0526)
• Self-starter who can work independently as well as in a team setting.

https://niccs.cisa.gov/workforce-development/nice-framework/specialty-areas/cyber-defense-analysis
https://niccs.cisa.gov/workforce-development/nice-framework/specialty-areas/incident-response
 

RTL Group is a leading entertainment company across broadcast, streaming, content and digital, with interests in 56 television channels, eight streaming services and 36 radio stations. The Group’s families of TV channels are either number one or number two in six European countries, while RTL Group owns or has interests in radio stations in France, Germany, Spain and Luxembourg. RTL Deutschland is the Group’s largest business unit and Germany’s first cross-media champion, operating across TV, streaming, radio, digital and publishing. RTL Group's streaming services include RTL+ in Germany, Videoland in the Netherlands and 6play and Salto in France. Fremantle is one of the world’s largest creators, producers and distributors of scripted and unscripted content, responsible for around 12,000 hours of programming per year, alongside an international network of teams operating in more than 25 countries. The streaming tech company Bedrock and the ad-tech company Smartclip are also owned by RTL Group. As a market leader, RTL Group strives to foster alliances and partnerships within the European media industry, for example by building one-stop advertising sales houses in Germany and the Netherlands with Ad Alliance and driving international advertising sales with RTL Ad Alliance. Bertelsmann is the majority shareholder of RTL Group, which is listed on the Luxembourg and Frankfurt stock exchanges and in the MDAX stock index.