Our Global Business Services (GBS) organization operates as an internal service provider for the group. Its ultimate purpose is to deliver relevant IT, financial, and HR business services to all business areas within the company.

Role purpose

Use Case Analyst develops, modifies, and tunes system rules and content to adjust the specifications of cyber security alerts and incidents. In addition, the role holder translates cyber threat intelligence and vulnerability information into actionable detection content to support the incident detection and response activities of the Security Operation Center. The role is essential to bridge different teams and requirements to create new detection use cases and manage and improve already existing ones.

Responsibilities

• Create, manage, and implement new security-related use cases on different security monitoring systems across the organization
• Develop and maintain up-to-date documentation related to these use cases, including procedures and playbooks.
• Evaluate if a new use case has all the needed requirements (ex. proper logs, indexing, triggering availability, etc.) and support the security infrastructure team if any of such requirements missing.
• Monitor existing use cases, with close cooperation with MSSP and internal teams.
Advise on fine-tuning and improving such use cases.

Requirements

• 5-10 years in Information Technology
• BSc or MSc degree in Information Technology or Computer Science
• CEH, GCIH, OSCP (or equal information security certification is an advantage) SIEM tools, Cyber security incident response/management
• Vulnerability and log management, SOC or SIEM tools
• Fluent English