Junior Security Operations Analyst
Malaga Office - Hybrid: 4 days in the office, 1 day working from home
As a Junior Security Operations Analyst, you will work with senior team members to understand threats and risks, apply security measures, and leverage your advanced knowledge of security tools and cloud environments (AWS and GCP). This hands-on role involves assisting the Security team to support Ebury's global expansion and meet regulatory changes.
Key Responsibilities:
1. Security Incident Management and Response:
o Escalate and manage security incidents/alerts through Ebury's SIEM tool
o Conduct mail headers analysis, antivirus/EDR alerts investigation, intrusion detection systems alerts investigations for desktop and cloud environments, and data loss prevention investigations.
o Perform advanced log monitoring on cloud and desktop/local network environments
o Assist with employee security concerns and provide reporting
2. Access Management and Policy Implementation:
o Assist with access policies procedures, including User Access Reviews (UAR)
o Help to maintain Role-Based Access Control (RBAC) and RACI matrix for different systems
3. Security Operations and Project Support:
o Assist with internal phishing campaigns and Ebury's Security Champions program
o Collaborate on security projects using Agile methodologies
o Analyse CVEs and conduct security assessments as part of vulnerability management
o Assist with Security Operations OKRs and KPI metrics
4. Cloud Security Management:
o Assisting with security logging and monitoring in our cloud environments, such as AWS and GCP environments
o Assisting on regular security assessments of cloud infrastructure and applications
5. Compliance and Reporting:
o Assisting compliance with relevant financial industry regulations and standards
o Contribute to security audits and assessments
6. Team Collaboration and Support:
o Provide local and remote assistance to users on security matters
o Liaise and advise on security risk topics as required
o Collaborate with international team members and the IT department on new initiatives
Qualifications and Skills:
* 1 year of experience as a security operations analyst
* Desired knowledge in the following areas:
o Security Incident Management and Response
o Log Monitoring / SIEM
o Cloud perimeter security (AWS and GCP)
o Desktop and physical network protection
o Mail analysis
o IDS / IPS
o Authentication management
o Vulnerability Management
* Basic experience in incident management (CSIRT) and forensic analysis
* Basic experience with security information and event management (SIEM) tools
* Good understanding of business and technical information security concepts based on ISO 27001 standard
* Knowledge of data protection principles and implementation
* Relevant security and cloud certifications are valued
Personal Skills:
* Hands-on
* Analytical and problem-solving skills
* Team player
* Communication skills
* Fluent Spanish
* Fluency in English
* Attention to detail and accuracy
* Highest level of ethical behaviour
What We Offer:
* Competitive salary and benefits package
* Opportunity to work with cutting-edge fintech technologies in a global, multi-cloud environment
* Professional development and training opportunities
* Collaborative and innovative work environment
* Potential for international travel and cross-office collaboration
#J-18808-Ljbffr