לצערנו המשרה כבר לא בתוקף

Security Analyst

3-4 שנים |
משרה מלאה
| לפני 20 שעות
תיאור משרה

Sapiens International Corporation (NASDAQ and TASE: SPNS) is a leading global provider of software solutions for the insurance industry, with a growing presence in the financial services sector. We offer integrated core software solutions and business services, and a full digital suite for the property and casualty/general insurance; life, pension, and annuities; and reinsurance markets. Sapiens also services the workers’ compensation and financial and compliance markets.

Our portfolio includes policy administration, billing, and claims; underwriting, illustration and electronic application; reinsurance and decision management software. Sapiens’ digital platform features customer and agent portals, and a business intelligence platform. With a 30-year track record of delivering to more than 500 organizations, Sapiens’ team of over 3,400 operates through our fully-owned subsidiaries in North America, the United Kingdom, EMEA, and Asia Pacific. For more information: www.sapiens.com.

.



Sapiens is looking for an experienced and professional Information Security Analyst & Operator to join the global information security team. In this role, the Information security Analyst and Operator will take reactive and proactive actions to handle any potential or actual cyber threat.

The analyst will be a key player in Identify real-time cyber threats. He/she will be responsible on the Management of information security events at the monitoring and Incident Response level.


Responsibilities:


Monitor and operate the Microsoft Cloud App Security (MCAS) and/or Cloud Access Security Broker (CASB) and/or Azure Information Protection (AIP)
Operate the alerts and/or notifications sent to the Information security SIEM/SOC to monitor and respond on any security alert and potential security incident as instructed by the CISO / CSIRT
Take reactive and proactive actions against cyber-threats and incidents
Maintain and enhance the various security systems as (MCAS, EDR, IDM, PT, CASB, AIP, MSG etc.) to always own a complete defense visibility and to continuously align it with new attack vectors and techniques
Handle security alerts and document actions and response as well as track remediation actions
Design and write code to support MCAS/AIP/CASB and respective systems rules creation, reports and dashboards, playbook definitions and development, interfaces development etc.
Research, simulate and run various security tests using publicly available and proprietary tools
According to need; lead security projects/activities with other security and R&D groups

דרישות התפקיד

Requirements:
At least 2 years of experience as a SOC operator - a must
At least 1 years of experience in security analysis in a high tech company - a must
Excellent understanding and proven hands-on experience with a leading SIEM system (defining and building correlation, aggregation, normalization and parsing)
Proven experience
Proven experience in connecting SIEM to cloud resources or working with AWS security and Azure security tools - an advantage.
Strong understanding of security principles, policies and industry best practices
Networking knowledge - understand networking essentials, components, data flows, architecture, ports and protocols, wireless, etc.
Background in networking, data security and cloud-based applications.
General operating system knowledge- Solid understanding and practical experience in various flavors of Windows and Linux, OS configuration, file system structures, OS components, mobile operating systems etc.
Scripting/coding experience (Python, Perl, Ruby, Bash, PowerShell, .NET, HTML5, PHP etc.) for developing, extending or modifying exploits, shellcode or exploit tools - an advantage
Excellent problem solving/analytical skills
Excellent communication and interpersonal skills
A team player - working in a global team
Ability to work in a multi tasking environment
Availability - the job requires high availability
Certifications in CISSP, CISM, CCSP, CCSK – an advantage
Personal requirements:
Independent with strong time management characterizes.
Strong contributor with a proactive, can-do approach.
Solid verbal, written, and interpersonal skills, able to communicate effectively with other departments with experience from global, distributed companies.
Fluent English.