Job Description

Chosen candidates will be members of the Attack Monitoring Team within Global Information Security’s - Security Operations. The Event
Analyst is responsible for the identification of electronic attacks from internal and external sources globally, threat assessment of detected
attacks and escalating events to the appropriate business area.
Acts with a team in relation to identified incidents and threats. Acts as an Attack Monitoring Team point of contact in the region, for example
Europe or Singapore. Applies decision-making logic to events to react to events affecting the business first.

Key Accountabilities & approximate time split (%)
Attack Monitoring – 75%
- Utilise existing processes and technologies in place to detect and prevent malicious electronic attacks to company's networks and network
estate.
- Identify attacks and malware (Trojans, virii, etc) looking at log file data other data generated from firewall and network devices.
- Enhance existing tools, processes and techniques utilised by the Attack Monitoring team to monitor Barclays’ networks and network estate.
- Respond to global network and computer security events affecting Barclays networks & provide guidance to identify attackers, attacks and
how to mitigate effects.
- Provision of ‘out of hours’ support as and when required by participating in an on-call rotation.
- Interface with other business areas to drive remediation efforts on detected security issues.
Initiative Delivery – 10%
- Establish and deliver methods & tools which provide the organization value by reducing risk.
- Help delivering technical detection and response programs and initiatives leveraging experience in doing so previously.
- Uses previously acquired know-how in global environments to provide success&lessons learned with regards to toolset deployment and
costs associated
- Understand costs associated with technical changes and impact on time, quality and stability of such changes
General Advice and Guidance – 15%
- Drive Attack Monitoring capabilities in the region by interfacing with regional business and stakeholders such as component members and
team leads, design teams and Security Engineering areas.
- Interface with project managers and service delivery managers to understand changes to existing and new projects with regards to risk
profile&exposure of network infrastructure and data
- Clearly communicate risk associated with detected events on a technical and non-technical layer to stakeholders Attack Monitoring
performs services for. Coordinates and drives remediation activities within scope. Understands when to escalate events and to whom.

Requirements

Technical Knowledge
- Extensive experience with event correlation products in large-scale environments
- Broad understanding of security techniques and technologies including Intrusion Detection, Proxy & URL filtering systems and Threat
Analysis.
- Extensive experience in Host and Network Intrusion Detection systems and knowledge of log analysis tools and techniques.
- Strong communication skills and ability to articulate events to the team.
- An understanding of the security mechanisms associated with Windows or Unix operating systems, switched networks, applications and
databases.
- Demonstrated ability to solve complex problems.
- Experience responding to information security and privacy incidents.
- Familiar with current malware trends
- Previous exposure to Linux and data manipulation using scripting.
- Previous exposure to databases.
Control
- Experience in escalation protocol ie. knows what should be communicated, when and to whom.
- Actively seeks ways to understand mitigate or reduce risks.
- Proven stakeholder management with both technical and non-technical stakeholders.
Delivery
- Ability to work concisely when under pressure or with extremely tight timescales.
- Possess experience in Emerging Market especially with emphasis in Asia Pacific region.
Personal Development
- Excellent command of English both written and spoken.
- Learns from mistakes or successes for future planning and development.
- Experience in international environments and interfacing with multi-tiered team structures.

Company offers

We are offering an exciting opportunity to be part of a dynamic global organisation and work with experienced professionals & subject matter
experts. You will discover a high performing, driven and supportive working culture and outstanding developmental possibilities to increase your
potential. We offer competitive salary packages and an annual discretionary compensation award. Private medical, life and accident insurance,
plus other employee benefits are standard.