Browse
···
Log in / Register
Job Summary: A cybersecurity professional focused on monitoring, analyzing, and mitigating cyber threats—especially DDoS attacks—and responding to security incidents. Key Highlights: 1. Monitor and mitigate DDoS attacks and security incidents. 2. Work with advanced tools for threat detection and response. 3. Conduct forensic analysis and develop security policies. **Key Responsibilities:** * Continuously monitor systems and networks to detect threats and security incidents. * Analyze and mitigate DDoS attacks on autonomous systems (AS), applying defense strategies and malicious traffic filtering. * Operate, configure, and optimize Wanguard or similar tools for DDoS attack detection, mitigation, and response. * Analyze network traffic patterns, identifying anomalies and potential threats using Wanguard and other monitoring tools. * Implement rules and policies for distributed attack mitigation, collaborating with the network team to adjust routers and firewalls. * Respond to security incidents by investigating and proposing corrective and mitigative actions. * Perform forensic analyses to identify the origin of attacks and security failures. * Develop and implement correlation rules for detecting advanced threats. * Assist in drafting and maintaining security procedures, policies, and guidelines. * Collaborate with other security, IT, and network teams to improve the organization’s security posture. * Participate in penetration testing and attack simulations to validate the effectiveness of security controls. * Stay updated on trends, vulnerabilities, and emerging cyber threats. **Education:** * Completed Bachelor’s Degree in Computer Networks or related fields **Experience** * Malware analysis and reverse engineering experience * Proven experience mitigating DDoS attacks on autonomous systems (AS) is a plus * Experience with threat intelligence frameworks **Knowledge** * Networking and security protocols (TCP/IP, BGP, DNS, HTTP, etc.). * Knowledge of penetration testing and offensive security testing. * Knowledge and operation of DeepField, Wanguard, or similar DDoS mitigation tools (Arbor, Radware DefensePro, FastNetMon, etc.). * Security monitoring and analysis tools (SIEM, IDS/IPS, EDR, etc.). * Incident response and digital forensic practices. * Security frameworks (NIST, MITRE ATT&CK, ISO 27001, etc.). * Scripting and automation knowledge (Python, Shell Script, PowerShell). * Desired certifications: CompTIA Security+, CEH, SOC Analyst (Blue Team), GIAC (GSEC, GCIA), among others.
