Cyber Defense Analyst

Kyndryl

  • London
  • Permanent
  • Full-time
  • 1 day ago
Who We AreAt Kyndryl, we design, build, manage and modernize the mission-critical technology systems that the world depends on every day. So why work at Kyndryl? We are always moving forward – always pushing ourselves to go further in our efforts to build a more equitable, inclusive world for our employees, our customers and our communities.The RoleKyndryl’s Security & Resiliency is one of our most critical practices, ensuring enterprises, regardless of their size and complexity, remain secure, available, reliable, and resilient. We take Cybersecurity seriously. We're not just invested; we're committed. We're not just protecting data; we're empowering. Kyndryl is committed to making the world safer, not only by investing in state-of-the-art services and technologies but also by empowering underserved communities with essential cyber skills.When you walk through our doors, you're not only joining a team but you're also becoming part of a legacy. Welcome to Kyndryl, where Cybersecurity isn't just a job – it’s a passion; a commitment to designing, running, and managing the most modern and reliable technology infrastructure that the world depends on every day.As a Cybersecurity Defense professional at Kyndryl, you will encompass cybersecurity, incident response, security operations, vulnerability management, and the world of cyber threat hunting and security intelligence analysis all to protect the very heartbeat of organizations – their infrastructure.In this role, you won't just monitor; you'll actively engage in the relentless hunt for cyber adversaries. In a world where every click and keystroke could be a potential gateway for attackers, your role will be nothing short of critical as you seek out advanced threats, attackers, and Indicators of Compromise (IOCs). Your expertise in endpoint detection and response (EDR) will be the shield that safeguards individual workstations, laptops, servers, and other devices from cybercrime. Your responsibilities go beyond vigilance. When it comes to network security, you'll utilize Network Detection and Response (NDR) to monitor the ever-flowing currents of network traffic. The incident management process will be used as you respond and manage to cybersecurity incidents.Cybersecurity Defense is all about information. You'll gather, analyze, and interpret data applying your own and external threat intelligence to uncover potential security threats and risks. These insights and your ability to analyze complex attack scenarios will be the foundation of our security strategy – helping Kyndryl stay one step ahead of security breaches.In Cybersecurity Defense at Kyndryl, you’re not just protecting the present – you’re shaping the future of digital security. Join us on this cybersecurity venture where your expertise and creativity will have a lasting impact in the world of digital defense.Your Future at Kyndryl
When you join Kyndryl, you're not just joining a company – you're entering a space of opportunities. Our partnerships with industry alliances and vendors mean you'll have access to skilling and certification programs needed to excel in Security & Resiliency, while simultaneously supporting your personal growth. Whether you envision your career path as a technical leader within cybersecurity or transition into other technical, consulting, or go-to-market roles – we’re invested in your journey.Are you passionate about protecting companies from cyber threats? Do you want to be part of a team that safeguards the digital assets of a cutting-edge organization? Look no further – Kyndryl is seeking a Cybersecurity Specialist to join our team of talented Security Intelligence Analysts.The Kyndryl CSIRT (Cybersecurity Incident Response Team) is looking for a Security Intelligence Analyst to join an advanced team that drives proactive identification of threats within the organization, provides rapid response, and monitors user activity, network events, and signals from security tools to identify events that merit attention, prioritization, and investigation.Primary Responsibilities:
  • Analyze network and host activity associated with both successful and unsuccessful intrusions by advanced attackers.
  • Contribute to enterprise incident response efforts.
  • Leverage understanding of tactics, techniques, and procedures associated with advanced threats to create and add custom signatures that mitigate highly dynamic threats to the enterprise.
  • Employ advanced forensic tools and techniques for attack reconstruction and intelligence gathering.
  • Proactively research emerging cyber threats. Apply analytical understanding of attacker methodologies and tactics, system vulnerabilities, and key indicators of attacks and exploits.
  • Contribute to threat intelligence reports and briefings that provide situational awareness of cyber threats impacting the company's global network infrastructure, to every level of the organization.
  • Participate in threat hunt operations using known adversary tactics, techniques, and procedures, as well as indicators of attack, in order to detect advanced threats to the enterprise.
  • Collaborate using information and knowledge sharing networks and professional relationships to achieve common goals.
  • Provide on-call support for incident response efforts outside of core hours as needed.
This is a unique opportunity to work with cutting-edge technology, be part of a dynamic team, and make a significant impact in the world of cybersecurity. If you're up for the challenge, apply now to join the Kyndryl cybersecurity team!Who You AreRequired Skills and Experience:4+ years of experience in a Cybersecurity field, or 2+ years of experience along with a bachelor’s degree in a related field.Expertise in network, host-based intrusion analysis, digital forensics, or malware analysis.Familiarity in utilizing EDR tools for detection and response (CrowdStrike, Defender, XDR, etc.).Experience in creating custom behavior or network-based detections to detect malicious activity.Experience performing "deep dive" analysis and correlation of log data from multiple sources (PCAP, forensic artifacts, etc.).Ability to leverage actionable threat intelligence in effort to increase security posture within enterprise environments.Proficient with contributing to and/or leading incident response activities.Understanding of Operating Systems and Network Protocols.Familiarity with Microsoft Windows administrative tools, and the Unix/Linux command line.Familiarity with Security Operations Center experience including experience with security automation platforms (XSOAR, Tines, etc.).Proficiency with XSIAM, Splunk, or other SIEM-type platforms.Understanding of behavioral-based threat models, including ATT&CK, Cyber Kill Chain, Diamond Model, etc.Excellent technical writing and presentation skills.Preferred Skills and Experience:Valid and current certification or equivalent experience in one of the following: CISSP / CompTIA Security+ / Certified Cloud Security Professional / GIAC Security EssentialsAn understanding of advanced cyber threats targeting enterprises, along with the tools, tactics, and procedures used by those threats.Experience applying threat and data modeling, advanced data correlation, and statistical analysis to develop alerts, notable events, investigative dashboards, and metrics-driven reports.Familiarity with scripting (e.g., Python, PowerShell) and Jupyter Notebooks for basic automation of security analysis tasksExperience as a Threat Researcher and/or Intelligence Analyst.Being YouDiversity is a whole lot more than what we look like or where we come from, it’s how we think and who we are. We welcome people of all cultures, backgrounds, and experiences. But we’re not doing it single-handily: Our Kyndryl Inclusion Networks are only one of many ways we create a workplace where all Kyndryls can find and provide support and advice. This dedication to welcoming everyone into our company means that Kyndryl gives you – and everyone next to you – the ability to bring your whole self to work, individually and collectively, and support the activation of our equitable culture. That’s the Kyndryl Way.What You Can ExpectWith state-of-the-art resources and Fortune 100 clients, every day is an opportunity to innovate, build new capabilities, new relationships, new processes, and new value. Kyndryl cares about your well-being and prides itself on offering benefits that give you choice, reflect the diversity of our employees and support you and your family through the moments that matter – wherever you are in your life journey. Our employee learning programs give you access to the best learning in the industry to receive certifications, including Microsoft, Google, Amazon, Skillsoft, and many more. Through our company-wide volunteering and giving platform, you can donate, start fundraisers, volunteer, and search over 2 million non-profit organizations. At Kyndryl, we invest heavily in you, we want you to succeed so that together, we will all succeed.Get Referred!If you know someone that works at Kyndryl, when asked ‘How Did You Hear About Us’ during the application process, select ‘Employee Referral’ and enter your contact's Kyndryl email address.

Kyndryl