Sign in to auto-apply
Stillingsbeskrivelse
Company Description
Statkraft has been making clean energy possible for over a century. We envision a world that runs entirely on renewable energy. With us, you will shape a career that is truly forward-facing with many amazing opportunities and offerings to match.
Job Description
The Statkraft CSIRT team is part of the Cyber Security Department. Our mission is to avoid or minimize business impact from attempted or conducted cyber-attacks against Statkraft’s assets. We are now looking for a new team member who will perform investigations of potential cyber-attacks and intrusion attempts and conduct vulnerability assessments throughout the enterprise using commercial and open-source assessment tools.
Your role
As Security Analyst you will play an important role in which your contribution help protect critical infrastructure in several countries. You will get the opportunity to influence both your own working day and Statkraft’s further development within cyber security.
Your responsibilities include:
- Monitoring, assessing, and responding to received warnings, alerts, and requests.
- Analysing security events in cooperation with colleagues, vendors, and relevant partners.
- Performing vulnerability assessments, evaluate the risk they represent, and provide system owners with analysis and recommendations.
- Proactive and reactive threat hunting within networks and endpoints.
- Perform in-depth technical investigations during security incidents, including data collection, intrusion analysis, and forensics.
- Following up on vulnerabilities and security incidents, and ensure sufficient measures are implemented.
- Participating in security evaluations and risk assessments of ongoing and new solutions and services.
- Contributing to implement relevant policies, processes, and tools to ensure compliance.
Krav
- You have solid work experience from a SOC or Incident Response Team.
- You possess experience with performing vulnerability assessments.
- You have experience with analysis and tools for collecting and analysing network and host logs (SIEM, IDS, EDR, etc.).
- You have an in-depth understanding of IP protocols and operative systems.
- You are fluent in Norwegian and English, both spoken and written.
- You must be eligible for Norwegian security clearance and authorization.
Ferdigheter
Erfaring
mid-level