Global crowdsourced security provider, trusted by world's largest organizations
Security Analyst
Location
Belgium
Posted
4 days ago
Salary
0
Seniority
Mid Level
Job Description
Security Analyst
Intigriti
• Oversee incoming security vulnerability reports from researchers' community • Challenge and support both researchers and security teams using security skillset • Research, POC and evaluate reports that come in through our platform • Handle escalations of tickets and researcher mediation • Mentor and coach more junior team members • Track changes in the team’s workload and prioritize accordingly • Assess the severity of reported issues in relation to business disruption • Calculate CVSS ratings • Review and provide feedback on reports in a constructive manner • Motivate and engage security researchers • Provide remediation advice and help customers make value out of received reports • Communicate, document, and share findings • Stay updated on the latest malware and security threats • Perform penetration tests and security validation on computer systems, networks and applications • Create new testing methods to identify vulnerabilities
Job Requirements
- Outstanding interpersonal abilities, and strong written and verbal communication skills
- Fluent in English, both written and spoken
- Dutch language skills is a big plus
- At least 2 years of relevant experience within pen testing, security testing, or vulnerability assessments
- Stress resistant & you can keep a clear focus on the resolution in an incident-context
- A strong understanding of the (Ethical) Hacker culture and the Bug Bounty community
- Attention to detail, analytical and problem-solving capabilities
- Able to independently find solutions to both technical and non-technical problems with no apparent answer (aggressive googling, stack overflow, etc)
- Flexible working hours, willing to take part in a 24x7 support organization
- Positive service-oriented personality
- Proven technology skills
- Proficient with Mac, Windows, Linux
- OWASP top 10 knowledge
- Web application security knowledge
- Mobile application security knowledge
Benefits
- Competitive salary
- 2-months work abroad policy
- Hybrid working model
- Initial home office budget
- Great training and yearly learning budget
- Social activities and team outings
- Referral bonus
- Great hardware and access to the best tools to be successful in your role
Related Guides
Related Categories
Related Job Pages
More Security Analyst Jobs
ServiceNow - Identity & Access Management IAM Security Analyst III
Tower HealthTower Health, a regional healthcare system, serves communities across multiple counties in Pennsylvania. Its network includes: Reading Hospital Phoenixville Hospital Pottstown Hospital St. Christopher's Hospital for Children (in partnership with Drexel University) Committed to academic medicine and training, Tower Health offers various programs, including: Residency and fellowship programs Drexel University College of Medicine at Tower Health Reading Hospital School of Health Sciences Additionally, the system provides a wide range of healthcare services, such as: Reading Hospital Rehabilitation at Wyomissing Home healthcare via Tower Health at Home TowerDirect ambulance and emergency response Tower Health Medical Group Tower Health Providers (a clinically integrated network) Tower Health Urgent Care facilities across its service area
Role Description The IAM Security Analyst III is a key member of the team helping evolve role-based access with ServiceNow. Provides technical support for customer account inquiries in effectively resolving or escalating incidents and inquiries related to access or account management services across multiple applications and technology platforms. Addresses end-user's access and other security related issues and recommends improvements to address security issues or gaps. Ability to make general decisions without guidance and direction in problem solving based upon a solid knowledge of the IAM functions, processes, and procedures. May participate in a project team involved in completion of difficult assignments, requiring proficient knowledge of field of specialization. This is a remote role with a strong preference for candidates residing in Pennsylvania. Candidates in Eastern and Central time zones will be considered. Qualifications - Relevant experience with ServiceNow. - Strong familiarity and experience with IAM. - Strong leadership skills to coordinate work, handle IAM escalations, interact across departments and in meetings. - Understanding of cybersecurity. - High School Diploma - OR - GED - OR - Relevant experience may be considered in lieu of education. - Obtains certification or training for applicable system(s) or application(s) as assigned, and meets department expected outcomes regarding time frame for completion, overall scoring and other aspects of training or certification process: Epic Security certification. Requirements - Analytical Skills - Collaborative Skills - Computer Skills to include use and navigation - Customer Service Skills - Delegation Skills - Detail Oriented - Epic Proficiency - Excellent Communications Skills - Excellent Interpersonal Skills - Good Reasoning Skills - Microsoft Office Applications - Multitasking - Organizational Skills - Problem Solving Skills - Project Management Skills - Service Orientation - Strong Team Player Company Description Tower Health is a regional integrated healthcare system that offers leading-edge, compassionate healthcare and wellness services to communities in Berks, Chester, Montgomery, and Philadelphia Counties. With 1,200 beds across the system, Tower Health consists of Reading Hospital in West Reading; Phoenixville Hospital in Phoenixville; Pottstown Hospital in Pottstown; and St. Christopher's Hospital for Children, a partnership of Tower Health and Drexel University in Philadelphia. For more information, please visit https://towerhealth.org/ .
• Identity and access management • Create, modify, and delete user accounts on mainframe Security systems such as RACF. • Using administration tools such as Vanguard, zSecure (PowerTech) to help administer security databases. • Access control: Implement and maintain security policies using RACF & Vanguard (zOS), PowerTech (AS400). • Policy enforcement: Enforce least privilege and role-based access control (RBAC). • Auditing: Conduct access reviews and audit activities to ensure compliance and proper authorization. • Collaboration: Work with other teams (e.g., security, infrastructure, IT, business stakeholders) to define and implement access requirements. • Automation: Drive automation of access provisioning and de-provisioning to streamline processes. • Documentation: Create and maintain documentation for user accounts, access management, policies, and procedures. • Incident response: Investigate and remediate access-related incidents and vulnerabilities.
• Own incidents end-to-end — from logging through to closure • Triage and diagnose faults across physical security systems, infrastructure, and hardware • Perform remote troubleshooting across Lenel OnGuard and Milestone environments • Resolve issues in-house wherever possible, reducing external engineer dependency • Coordinate third-party engineers with clear diagnostics and defined scope • Maintain accurate ticketing, documentation, and system data quality • Support system administration (patching, upgrades, firmware, new site onboarding) • Contribute to a global support model, including on-call as services expand
Senior IT Security Analyst
Guild MortgageIn neighborhoods and communities everywhere, we deliver the promise of home.
• Serves as the first line of security alert escalation and guidance for IT Security Analysts. • Performs essential duties with minimal supervision for one or multiple areas of the IT Security Program such as vulnerability management, security awareness, threat intelligence, etc. • Monitor data activity and investigate alerts related to data exfiltration, inappropriate access, and policy violations. • Investigate security incidents involving sensitive data, including unauthorized access and data leakage. • Partner with the Incident Response team to contain, remediate, and document data-related incidents. • Develop and maintain runbooks for data protection incident handling and escalation. • Works closely with IT Security Engineers to draft runbooks, tune alerts, collaborate on escalations, and generate ideas for new alerting. • Acts as lead for small projects by IT Security Manager and/or Director as needed. • Conducts network monitoring and intrusion detection analysis using various computer network defense tools, such as intrusion detection/prevention systems, firewalls, and host-based security systems. • Conducts log-based and endpoint-based threat detection to detect and protect against threats coming from multiple sources. • Deploys cloud-centric detection to detect threats related to cloud environments and services used by the organization. • Correlates activity across assets (endpoint, network, apps) and environments (on-premises, cloud) to identify patterns of anomalous activity. • Reviews alerts and data from sensors, and documents formal, technical incident reports. • Works with threat intelligence and/or threat-hunting teams. • Provides network subscribers with incident response support, including mitigating actions to contain activity and facilitating forensics analysis when necessary. • Works with security information and event management (SIEM) to manage/tune the system, create/manage the detection content and actively watch for alerts. • Correlates network, cloud, and endpoint activity across environments to identify attacks and unauthorized use. • Researches emerging threats and vulnerabilities to aid in the identification of incidents. • Supports network vulnerability scans, security audits, and risk assessments and provides feedback to ensure compliance with corporate security policies and adherence to industry best practices. • Provides users with incident response support, including mitigating actions to contain activity, and facilitating forensics analysis when necessary. • Performs security standards testing against computers before implementation to ensure security.



