Security Analyst

Bitdefender

Bitdefender is a cybersecurity leader delivering best-in-class threat prevention, detection, and response solutions worldwide. Guardian over millions of consumer, enterprise, and government environments, Bitdefender is one of the industry’s most trusted experts for eliminating threats, protecting privacy, digital identity and data, and enabling cyber resilience. With deep investments in research and development, Bitdefender Labs discovers hundreds of new threats each minute and validates billions of threat queries daily. The company has pioneered breakthrough innovations in antimalware, IoT security, behavioral analytics, and artificial intelligence and its technology is licensed by more than 180 of the world’s most recognized technology brands. Founded in 2001, Bitdefender has customers in 170+ countries with offices around the world. For more information, visit https://www.bitdefender.com

Our mission at Bitdefender is to reduce risk to customers’ business to allow them to achieve their objectives. We are focused on delivering real security value for an affordable price – no snake oil. To help in this mission, we are looking for a Security Analyst. You will work in a tight knit, experienced team backed up by an international organization that’s been in business for 18 years.

About Us

:The Managed Detection & Response service is a new line of business (think division, business unit, etc). We are an experienced team having built successful Managed Security offerings in the past and staffed by a multitude of cybersecurity organizations and veteran cyber-warfare operators from the military and intelligence services. We all got into this business to provide security services that make customers safer. We must make some money to do that, but our primary goal is to provide services that secure, not just ones that sell

.Our team has been around the block together and operate in a 24x7 environment where we manage emergency situations for customers. For this to work, we must trust each other. As a leadership team, we focus on building that trust through accountability, processes and personal relationships. We have plenty of experienced team members with and without families and understand that not all teams can be built outside of work, but we focus on teamwork to build authentic and meaningful engagement

.
About the Rol

e:This is a full-time position in a 24/7 operation with a 12-hour shift Panama schedule. Scheduled rotations for night and weekend shifts will be require

d.Under limited supervision, the Security Analyst performs real-time monitoring and analysis of security events from multiple source

s.Triage security events to determine priority and severi

tyUse indicators of compromise from current intelligence information to proactively review customers environments searching for suspicious behavior across network, host and logs dat

a.Assist in the development of analytic signatures to identify suspicious and malicious behavio

rs
About y

• ou:Be able to demonstrate understanding of the followi
• ng:Cybersecurity princip
• lesCyber threats and vulnerabilit
• iesCurrent incident response methodolog
• iesCurrent cyber investigative techniq
• uesCurrent cyber threat tre
• ndsComputer networking concepts and protocols, and network security methodolog
• iesKnowledge of basic physical computer components and architectures, including the functions of various components and peripherals (e.g., CPUs, NICs, HD
• Ds)Perform analysis of log files from a variety of sources (e.g., individual host logs, network traffic logs, firewall logs, and intrusion detection system [IDS] logs) to identify possible threats to network secur
• ityBasic system administration, network, and operating system hardening techniq
• uesIdentifying, modifying, and manipulating applicable system components within Windows, Unix, or Linux (e.g., passwords, user accounts, fil
• es)Conduct research, analysis, and correlation across a wide variety of all source data sets (indications and warnin
• gs)Defense-in-depth principles and practices (e.g., defense-in-multiple places, layered defenses, security robustne
• ss)Virtualization and cloud comput
• ingKnowledge of which system files (e.g., log files, registry files, configuration files) contain relevant information and where to find those system fi
• lesHacking methodolog
• iesNetworking protocols (e.g., TCP/IP), services (e.g., web, mail, DNS), and how they interact to provide network communicati
• onsKnowledge of encryption algorithms (e.g., Internet Protocol Security [IPSEC], Advanced Encryption Standard [AES], Generic Routing Encapsulation [GRE], Internet Key Exchange [IKE], Message Digest Algorithm [MD5], Secure Hash Algorithm [SHA]) and how they are u
• sedHow to perform packet-level analysis using appropriate tools (e.g., Wireshark, tcpdu
• mp)Security Information and Event Management (SIEM) tools - Searching, aggregating, and correlating d
• ataWeb Application Firewall (W
• AF)Regular Expressions (Reg

ex)
Technical Skil

• ls: Basic understanding of networking concepts (TCP/IP, DNS, HTTP, et
• c.).Familiarity with operating systems (Windows, Linux, Mac
• OS).Knowledge of security fundamentals (encryption, authentication, access control, et
• c.).Basic knowledge of security tools and technologies (SIEM, IDS/IPS, firewalls, antivirus softwa

re).
Analytical Ski

• lls: Ability to analyze logs, network data, and other sources of information to identify potential security incid
• ents.Strong problem-solving skills and attention to de

tail.
Communication Sk

• ills: Effective written and verbal communication s
• kills.Ability to document incidents and communicate technical information to non-technical stakeho

lders.
Soft S

• kills: Ability to work well under pressure and handle multiple tasks simultan
• eously.Strong sense of ethics and int
• egrity.Willingness to continuously learn and adapt to new threats and techno

logies.
Certifi

• cations:Entry-Level Certifications (optional but bene
• ficial):CompTIA S
• ecurity+Certified Ethical Hack
• er (CEH)GIAC Security Essential
• s (GSEC)Cisco Certified CyberOps A
• ssociateCertified Information Systems Security Professional (CISSP) (for those seeking more advance

d roles)
Work Ex

• perience:Typically, 2-5+ years of experience in cybersecurity or a relat
• ed field.Proven track record in managing advanced security incidents and performing threat
• analysis.Hands-On Ex
• perience:Practical experience with security tools and technologies through labs, simulations, or personal
• projects.Experience in security monitoring, incident response, and threat
• hunting.Hands-on experience with security tools and technologies such as SIEM, IDS/IPS, firewalls, EDR, and investigati

on tools.
Additional Req

• uirements:Willingness to Wo
• rk Shifts:Ability to work in a 24/7 environment, including night shifts, weekends, and holidays, if
• required.Continuous
• Learning.Commitment to ongoing professional development and staying current with the latest cybersecurity trends an