Security Analyst

Description

Summary: A Security Analyst protects an organization’s information assets by monitoring, detecting, and responding to cybersecurity threats, improving security posture, and ensuring compliance. Highlights: 1. Monitor, detect, and respond to cybersecurity threats 2. Improve security posture and ensure compliance 3. Conduct vulnerability scanning and risk assessments **Security Analyst — Job Description** **Summary** A Security Analyst protects an organization’s information assets by monitoring, detecting, and responding to cybersecurity threats, improving security posture, and ensuring compliance with policies and regulations. **Key responsibilities** * Monitor security alerts and logs from IDS/IPS, SIEM, endpoint detection, firewalls, and cloud services. * Triage, investigate, and escalate security incidents; perform root\-cause analysis and containment. * Conduct vulnerability scanning, risk assessments, and penetration\-test coordination; track remediation. * Develop, maintain, and enforce security policies, standards, and procedures. * Perform threat hunting and intelligence analysis to identify emergent risks. * Manage endpoint and identity protections (EDR, IAM/MFA, privileged access). * Configure and tune detection rules, alerts, and playbooks in the SIEM/SOAR platform. * Coordinate incident response activities with IT, legal, and business stakeholders; prepare incident reports. * Maintain and test disaster recovery and business continuity plans. * Provide security awareness training and phishing simulations for staff. * Produce regular security metrics, dashboards, and executive briefings. * Ensure compliance with relevant regulations and frameworks (e.g., ISO 27001, NIST CSF, GDPR, PCI\-DSS) as applicable. **Required qualifications** * Bachelor's degree in Computer Science, Information Security, or related field (or equivalent experience). * 2\+ years in cybersecurity, IT operations, or SOC roles. * Hands\-on experience with SIEM (Splunk, Elastic, QRadar), EDR (CrowdStrike, SentinelOne), and common security tools. * Strong knowledge of TCP/IP, networking, Linux/Windows internals, and common protocols. * Familiarity with vulnerability scanners (Nessus, Qualys), penetration testing concepts, and OWASP. * Skilled in incident response, log analysis, and forensic basics. * Certifications preferred: Security\+, CEH, eJPT, CISSP (or progress toward). * Strong analytical, communication, and documentation skills. **Preferred skills** * Experience with cloud security (AWS/Azure/GCP), cloud\-native monitoring, and IaC security (Terraform, CloudFormation). * Scripting/automation skills (Python, PowerShell, bash). * Knowledge of SOAR platforms and playbook development. * Experience with compliance programs and audit support. * Familiarity with threat intelligence platforms and MITRE ATT\&CK. Pay: QAR7,304\.19 \- QAR10,438\.29 per month Work Location: In person