• Analysis of threat detection data to identify trends and campaigns
• Product a monthly performance report, covering detection statistics, identified campaigns and new threats
• Conduct open source research into existing, emerging and future threats and ensure that these are captured for testing and development
• Provide third line support, investigating issues with customer detections and responding or escalating
• Support engineering team with ad-hoc requests for analysis or data
• Demonstrates maturity, skills and adeptness in team collaboration, technical discussions and negotiations
• Continually improve personal understanding of emerging trends in the threat landscape
• Proactively research industry trends and best practices, and apply them 
• Ensures that all work is consistent with defined standards where standards exist and to withstand professional scrutiny in any case
• Demonstrates the ability to reflect on and improve personal performance

Skills: Threat Detection Analysis, Performance Reporting, Open Source Research, Advanced Technical Support, Team Collaboration, Cybersecurity Trends Knowledge, Data Analysis Support, Standards Compliance

• Analyse the newest emerging threats by reverse-engineering them (malware analysis) and actively develop the internal infrastructure to improve automation systems
• Focuses on improving the detection capabilities of Threat Intelligence service 
• Hunting for new threats, investigating malware-related incidents and protecting customers against criminals and nation state actors targeting critical infrastructures
• Responsible to write technical blog posts to share research-related details with the community.
• Consult on and lead vulnerability identification, new threat exposures, and emerging security technologies. 
• Apply specific functional knowledge, working knowledge, and general industry knowledge. 
• Develop or contribute to solutions to a variety of problems of moderate scope and complexity. 
• Work independently with some guidance and review or guide activities of more junior employees.
• Continuous analysis of cyber threat actor activities from a wide range of intelligence sources
• Maintaining a current intelligence snapshot of cyber threat participants' assets and capabilities.
• Cooperating closely with operational teams conducting investigations into cyber threats in the Israeli cyberspace

Skills: Malware Analysis, Detection Improvement, Threat Hunting, Technical Blogging, Vulnerability Consulting, Industry Knowledge, Solution Development, Cyber Threat Analysis

• Responsible for establishing, maintaining and using operational security standards, processes, procedures and guidelines
• Produce timely, accurate and relevant threat products (Tactical, Operational, and Strategic)
• Analysing host and network-based logs to identify malicious activity or abnormalities
• Undertaking proactive and reactive threat hunting investigations
• Conduct threat hunting investigations on identified / potential threats
• Identification of potential threats to easyJet network
• Researching and analysing incidents and attacks to identify attack patterns and trends
• Support incident response 
• Produce targeted threat hunting support to the SOC in its detection, isolation and remediation of security incidents

Skills: Security Standards, Threat Production, Log Analysis, Threat Hunting, Threat Identification, Incident Research, Incident Response, SOC Support

• Threat hunting response to security incidents, alerts and identified threats
• Monitor internal and external security threats and known vulnerabilities, and ensure that easyJet technical controls are aligned to these
• Help Security Operations develop and operate processes and procedures that counteract threats and vulnerabilities
• Tune easyJet threat hunting tooling
• Maintain a detailed understanding of the techniques, tools and trends associated with identified threats and security incidents
• Conduct technical research into emerging threats and trends
• Through easyJet external organisations keep abreast of emerging trends, technologies and regulations
• Provide support for security related projects

Skills: Threat Response, Security Monitoring, Process Development, Tool Tuning, Threat Knowledge, Technical Research, Trend Awareness, Project Support

• Monitor and evaluate the events recorded by the relevant security mechanisms (Security Events and Alerts), Threat Intelligence Services as well as Information Systems and coordinate procedures to prevent, detect, limit and deal with incidents, in cooperation with the competent Units.
• Carry out specialized investigations in cases of security breaches (Cybersecurity Forensics Analysis), suggesting improvement measures in cooperation with the competent Units and ensuring the implementation of the required corrective actions.
• Remain up to date with information on the new “threats landscape” and cybersecurity incidents as well as design and implement relevant control scenarios in order to best deal with them within the Bank and the Group. 
• Evaluate the relevant results and propose improvements.
• Cooperate with competent external bodies in matters of cybersecurity and of dealing with cyber-attacks.
• Provide classification of the threat(s) from a specific domain(s).
• Organize and analyze collected data to determine overall trends.
• Produce public blog posts around specific threats.
• Improve data sharing with CERTs and the DNS industry.

Skills: Security Event Monitoring, Incident Coordination, Cybersecurity Forensics, Threat Landscape Awareness, Control Scenario Design, External Collaboration, Threat Classification, Data Analysis

• Certified Information Systems Security Professional (CISSP) or equivalent certification
• Understand, interpret, and explain technical security information
• Strong communication and organization skills
• Highly motivated, independent thinker and team player
• Ability to work in fast paced environment balancing competing demands and deadline
• Ability to research and quickly understand technologies and how threat can exploit problems. 
• Experience working in prior cyber security role 
• Enjoys solving login problems and playing games which require both individual and collaborative problem-solving techniques.

Qualifications: BS in Network Security with 2 years of Experience

• Relevant work experience in cyber security.
• Strong communications and technical writing skills.
• Strong team player with the ability to conduct daily duties autonomously
• Familiarity with SOC/NOC operations.
• Familiarity with Kill Chain for incident response.
• Familiarity with security technologies such as IDS, IPS, and HBSS.
• Understanding of network and system administration.
• Experience with database (e.g. MS Access, SQL) and/or portal administration (e.g. SharePoint).
• Customer service experience.
• CISSP certification or equivalent work experience.

Qualifications: BS in Information Technology with 7 years of Experience

• Excellent analytical abilities and a strong ability to think creatively when approaching issues.
• Clear understanding of cybersecurity, threat intelligence, and DNS technologies.
• Strong verbal presentation and writing skills, including the demonstrated ability to write clear and concise text (bi-lingual English and German).
• Strong skills with current generation word processing and spreadsheet utilities.
• Some hands-on scripting experience with common data science tools and languages (R, python) and interfacing with large scale data sets.
• Some hands-on experience with LINUX command line and associated utilities.
• Lots of interesting responsibilities, with the chance to make an impact on grow with the work.
• Responsible for strengthening the education, research and innovation community
• An informal working atmosphere.
• Enjoys both giving and receiving candid feedback to decision makers
• Strong ability to convey technical concepts to peers.
• Demonstrated comfort with technology and proven ability self-teach.

Qualifications: BS in Cybersecurity with 4 years of Experience

• Knowledge of adversary activities in cyberspace with an understanding of intrusion set tactics, techniques, and procedures (TTP)
• Strong familiarity with Advanced Persistent Threat (APT) activity as well as indicators of compromise
• Ability to analyze, produce, and disseminate analytical cyber threat products that assist in identifying threats, priorities, severities, and IA risk mitigation measures.
• Technical skills proficiency in network communication using TCP/IP protocols, basic system administration
• Basic understanding of malware
• Knowledge of computer network defense operations (proxy, firewall, IDS/IPS, router/switch)
• Ability to perform data analysis, aggregation, event correlation and information security threat definition
• Ability to engage with cyber intelligence analyst counterparts across the US Intelligence and Law Enforcement communities
• Very high attention to detail
• Experience working in a Security Operations Center or Computer Network Defense organization

Qualifications: BS in Computer Science with 5 years of Experience

• Strong analytical competency
• Well versed in multiple cyber security domains and technologies such as firewalls, anti-malware, intrusion detection and/or prevention systems, and other network and systems security platforms
• Deep insights into threat intelligence tools and techniques
• Advanced knowledge of cyber-attack techniques, and mitigation strategies
• Ability to effectively communicate complex topics to engineers and leadership
• Ability to properly handle confidential data and strictly follow business processes and procedures
• Ability to operate in fast paced and high stress situations
• Ability to conduct in-depth forensics analysis on a variety of operating systems and IT platforms
• Relevant military experience, certification, or ability to clearly demonstrate competence through experience.

Qualifications: BS in Information Security with 4 years of Experience