Junior Security Operations Analyst
Malaga Office - Hybrid: 4 days in the office, 1 day working from home
As a Junior Security Operations Analyst, you will work with senior team members to understand threats and risks, apply security measures, and leverage your advanced knowledge of security tools and cloud environments (AWS and GCP). This hands-on role involves assisting the Security team to support Ebury's global expansion and meet regulatory changes.
Key Responsibilities:
Security Incident Management and Response:
Escalate and manage security incidents/alerts through Ebury's SIEM tool
Conduct mail headers analysis, antivirus/EDR alerts investigation, intrusion detection systems alerts investigations for desktop and cloud environments, and data loss prevention investigations.
Perform advanced log monitoring on cloud and desktop/local network environments
Assist with employee security concerns and provide reporting
Access Management and Policy Implementation:
Assist with access policies procedures, including User Access Reviews (UAR)
Help to maintain Role-Based Access Control (RBAC) and RACI matrix for different systems
Security Operations and Project Support:
Assist with internal phishing campaigns and Ebury's Security Champions program
Collaborate on security projects using Agile methodologies
Analyse CVEs and conduct security assessments as part of vulnerability management
Assist with Security Operations OKRs and KPI metrics
Cloud Security Management:
Assisting with security logging and monitoring in our cloud environments, such as AWS and GCP environments
Assisting on regular security assessments of cloud infrastructure and applications
Compliance and Reporting:
Assisting compliance with relevant financial industry regulations and standards
Contribute to security audits and assessments
Team Collaboration and Support:
Provide local and remote assistance to users on security matters
Liaise and advise on security risk topics as required
Collaborate with international team members and the IT department on new initiatives
Qualifications and Skills:
1 year of experience as a security operations analyst
Desired knowledge in the following areas:
Security Incident Management and Response
Log Monitoring / SIEM
Cloud perimeter security (AWS and GCP)
Desktop and physical network protection
Mail analysis
IDS / IPS
Authentication management
Vulnerability Management
Basic experience in incident management (CSIRT) and forensic analysis
Basic experience with security information and event management (SIEM) tools
Good understanding of business and technical information security concepts based on ISO 27001 standard
Knowledge of data protection principles and implementation
Relevant security and cloud certifications are valued
Personal Skills:
Hands-on
Analytical and problem-solving skills
Team player
Communication skills
Fluent Spanish
Fluency in English
Attention to detail and accuracy
Highest level of ethical behaviour
What We Offer:
Competitive salary and benefits package
Opportunity to work with cutting-edge fintech technologies in a global, multi-cloud environment
Professional development and training opportunities
Collaborative and innovative work environment
Potential for international travel and cross-office collaboration
#J-18808-Ljbffr