Security Analyst / SOC Analyst

Due to the expansion of our IT department, we are looking for a SECURITY ANALYST/SOC ANALYST who reports to the Senior Technology Officer through IT Governance & Risk Control Officer. Do you recognize yourself in the profile below? Let us know.

The Security Operations Center (SOC) Analyst that we are looking for who is a cybersecurity professional responsible for monitoring and analysing an organization's security infrastructure to detect and respond to security threats and incidents. IT Security Analyst is a first line of defence position which detects infiltration attempts geared towards DHB Bank and provides effective monitoring to ensure timely & effective response and secure IT infrastructure where confidentiality, Integrity and availability of information can be ascertained.
 
IT Security Analyst works closely with the second line of defence (Information Security Department) & IT governance and risk control officer for security related matters and identifies and addresses potential exposures to accidental or intentional destruction, disclosure, modification or interruption of information. IT Security Analyst also acts as a catalyst to follow up on related regulatory requirements to be abreast and in control of regulatory compliance at all times.  
 
Main tasks and responsibilities

• Security Monitoring: Continuously monitor security alerts and events generated by various security systems, such as intrusion detection systems (IDS), intrusion prevention systems (IPS), firewalls, antivirus, and SIEM (Security Information and Event Management) tools.
• Security Tools Maintenance: Maintain and update security monitoring tools, ensuring they are up-to-date and effectively detecting threats.
• Security Enhancement: Recommend and implement security improvements, enhancements, and best practices to strengthen the organization's security posture.
• Threat Detection: Identify and analyse security incidents and potential security threats, including malware infections, suspicious network activity, and unauthorized access attempts etc.
• Incident Response: Coordinate and participate in incident response activities, including incident triage, containment, eradication, and recovery. Document all incident details and actions taken.
• Investigation: Conduct in-depth investigations into security incidents to understand their scope and impact. Determine the root cause of incidents and vulnerabilities.
• Vulnerability Management: Assist in the management of vulnerabilities by identifying and tracking security weaknesses and working with relevant teams to remediate them.
• Security Policy Compliance: Ensure that security policies and procedures are followed by monitoring and reporting on compliance issues. Assist in the development and maintenance of security policies and procedures.
• Documentation: Maintain detailed records of security incidents, investigations, and response activities. Generate reports on security incidents and trends.

• Educational background; HBO/ University, preferably a technical study like computer science or information science (or relevant experience).
• Preferred job related certifications C|EH, OSCP, Security+, Network+, etc.
• Three or more years of technical experience, preferably in the banking sector and/or IT security environment.
• Strong understanding of cybersecurity principles, technologies, and best practices.
• Knowledge of network security, operating systems, and common security technologies.
• Analytical and problem-solving skills to identify and respond to security threats.
• English language skill is required both in verbal and in writing. Turkish and/or Dutch are desirable.

• Excellent communication and teamwork skills to collaborate with various teams and stakeholders.
• Motivated, Analytical, Quality oriented & team player.
• Eye for risk detection by observing patterns.
• Experience with security tools and technologies (e.g., SIEM, IDS/IPS, EDR/XDR, antivirus, firewall management).
• Familiarity with penetration testing and ethical hacking techniques.
• Knowledge of cloud security and mobile device security.
• Understanding of regulatory compliance requirements in banking sector.