Cyber Security Analyst

About

Do you want to become a Cybersecurity expert and be part of a team that faces new challenges every day by detecting and analyzing real cyber attack attempts?

Then you might want to spend a few seconds reading our announcement!

What you will learn working with us?

We are looking for a Cyber Security Analyst to join the Blue Team of Communication Valley Reply's Cyber Defence Center, a center of expertise specialized in the detection and management of IT incidents, aimed at protecting the IT, OT, and IOT infrastructures and systems of the clients it operates on, 24 hours a day, 365 days a year. You will therefore learn the techniques for detecting security threats, how they are analyzed and managed when they turn into incidents. Furthermore, we require the annual attainment of at least 1 certification in the field (paid for by the company).

Your role within our team

• Detection of Cyber attacks and Root Cause Analysis using centralized consoles for log and alarm management (SIEM)
• In-depth analysis directly on the tools used to protect client infrastructures and systems (Web Application Firewall, Antispam, EDR, IDS, IPS, Firewall, Antimalware, etc.)
• Recognition of attack techniques, or any recurring or anomalous patterns for the purpose of tuning false positives or creating new attack detection patterns.
• Evaluation of the impacts of an ongoing cyber attack, with proposals for remediation and indications regarding the prioritization of countermeasures.
• Implementation of initial mitigation actions
• Routine management of security tools used (updating solutions, modifying runtime configurations).
• Identification of phishing campaigns and analysis of suspicious sites with the aid of proprietary tools developed by Communication Valley Reply, followed by their takedown to stop fraud attempts against the client base.
• Information gathering in the cybersecurity domain to inform CSOC clients about recent vulnerabilities, innovative fraud mechanisms, malware propagation, or more frequent attack methods by attackers.
• Preparation of reporting related to managed services

You could join our team if...

• You have a Bachelor's or Master's degree in Computer Science, Information Security, Computer Engineering, Telecommunications Engineering with a grade of at least 97/110
• You know English (written and spoken)
• You have practical knowledge of the ISO/OSI model and the functioning of the main network protocols (Ethernet, IP, TCP/UDP)
• You know the functioning of application protocols HTTP, DNS, FTP
• You know the best practices in terms of defensive cybersecurity, as well as the tactics, techniques, and procedures used by attackers (TTP)
• You know specific architectures and protocols for OT and IOT environments
• You have the ability to understand the risk and scope of attacks
• You know the main network security architectures.
• You hold recognized certifications in cybersecurity

It is a plus to have at least one of the skills listed below:

• Incident analysis via SIEM systems
• Configuration/Management of IPS, EDR, NGFW, WAF systems
• Use of Vulnerability Assessment tools

Furthermore, you must possess the following non-technical skills:

• Ability to work in a team as well as independently
• Ability to interact with clients through a consulting approach
• Ability to manage high-stress situations, executing defined tasks and processes, during the response and containment of cyber attacks
• Propensity for knowledge sharing and reporting of activities performed
• Propensity for studying innovative technological solutions

Where you will work

The activities will be carried out at our Cyber Defence Center at the Reply office in Milan.

Communication Valley Reply is committed to promoting diversity and creating an inclusive work environment, valuing the uniqueness of individuals regardless of age, gender, sexual orientation, religion, nationality, disability, or any other characteristic protected by Italian Law (L.68/99).

Furthermore, Reply is committed to ensuring a fair and accessible selection process: do not hesitate to let us know if you need support during the process.