• Supporting the incident response process by providing advanced analysis services. To include containment and remediation process recommendations, independent analysis of security events, and reporting of identified incidents to Incident Handling. This can includes leading the incident response.

• Identifying threats and developing suitable defense measures, evaluating system changes for security implications, and recommending enhancements.

• Researching and drafting cyber security white papers, and providing first-class support to the cyber security staff for resolving difficult cyber security issues.

• Providing targeted attack detection and analysis, including the development of custom signatures, log queries and analytics for the identification of targeted attacks.

• Developing and executing custom scripts to identify host-based indicators of compromise.• Providing proactive APT hunting, incident response support, and advanced analytic capabilities.• Applying system security engineering principles to deliver real solutions premeditated to enhance the security position.• Proactively monitoring SOC provided tools.• Performing initial analysis, identification, remediation, and documentation of network intrusions and computer system

compromises.• Configuring Windows and Linux host-based security as well as network and cloud-based security systems.• Supporting with the installation and configuration of network security architectures, including firewalls, router Access Control

Lists, web content filters and Demilitarized Zones.• Observing and responding to Intrusion Detection System cues and anti-virus alerts.• Reviewing technical design, integration testing, and documentation work.• Technical advisory to research teams.• Updating, sustaining and administering a high level of security for in-house infrastructures.• Running vulnerability valuation and fuzzing of protocols, hardware, and software.

Required qualifications and skills: • Two or more years of experience identifying threats and developing appropriate protection measures and working in a

Security Operations environment.• Ability to review system changes for security implications and recommending improvements.• Understanding of cyber security methodologies.• Proficient in one of the following: Java, .net, C++, Python, bash, power shell.• Experience in (or willingness to get to grips with) database interrogation and analysis tools, such as Hadoop, SQL and SAS.• Drive and resilience to try new ideas.• A collaborative approach to sharing ideas and finding solutions.• Good team player, self-confident, motivated and independent.• Excellent communication skills.• Current knowledge of technology capabilities and trends; types, and techniques, of hacking attacks in the wild.• Understanding of the Open Systems Interconnection model and renowned ports and service can be an added advantage.• Ability to multi-task with a calm demeanour and work under pressure in a fast-paced environment.

At Butterfield, we pride ourselves on being approachable, disciplined and proactive. If you embody these qualities and have the necessary experience, you may be the one we’re looking for.

Security Operations AnalystAn excellent opportunity for an individual to continue to develop their Information and Cyber Security career, gain further insight into the industry and build experience across a number of Information and Cyber Security knowledge areas.

Your responsibilities will include:

www.butterfieldgroup.com

T H E B A H A M A S | B E R M U D A | C A Y M A N I S L A N D S | G U E R N S E Y | J E R S E Y | S I N G A P O R E | S W I T Z E R L A N D

Butterfield Bank (Guernsey) Limited is licensed by the Guernsey Financial Services Commission.

strict confidence to recruitment@butterfieldgroup.comfocused on service excellence, please send your application and CV, inIf you are a professional, effective and committed team player, who is