The Team
At Aflac NI we are building a multidisciplinary Cyber Security Team to support our Global Security Program, protecting our customers in the US and Japan.
Over the next three years, we plan to grow the Aflac NI Security Team to over 30 people and take ownership of key components of the Global Security Program. We are integrating with the Global Security Team to strengthen its existing functions and build new capabilities.
Working as part of the Aflac NI Cyber Security Team, you will partner with the US-based Penetration Services Team to plan, manage, and execute on the Global Security Strategy.
Aflac NI embraces diversity. Our team is one of Belfast's most diverse and represents talented people with a variety of backgrounds, perspectives, and skills. We believe that the more inclusive we are, the better and more enjoyable our work will be.
The Role
Aflac NI is in search of an experienced cyber security professional with extensive knowledge of the cyber threat landscape and experience building and running simulated attacks against corporate infrastructure.
You will join Aflac’s Penetration Services Team and test the effectiveness of security controls using an attack simulation tool. You will be given extensive training in this tool and become the SME for Global Security.
You will also work closely with other Global Security Teams including the SOC & Incident Response to plan, lead and execute engagements across a variety of attack scenarios.
What you’ll be doing
- Prioritize threats based on threat intelligence and incident response data
- Execute tests against Aflac’s security infrastructure to measure the efficacy of security controls against real adversary attacks and discover undetected gaps
- Perform tests and validate coverage across a variety of techniques
- Prepare custom actions and test sequences based on new threats actors or TTPs
- Map detection coverage to the latest iteration of the MITRE Att&ck framework
- Investigate deviations from expected results and work with relevant teams to remediate findings
- Work with security engineering, SOC, Incident Response and other Teams to ensure tools are working as expected and correlation rules are in place
- Support Aflac Japan’s attack testing as required
- Maintain and update Splunk dashboard
- Ensure system, content and security updates are run for tooling and backups are completed
- Show attention to detail when examining data, while providing sufficient analysis and technical detail when communicating recommendations
Skills & Experience
Essential
- Bachelor’s degree in IT / Cyber Security and or 3+ years experience in related fields such as security research
- Possess a passion for security and knowledge of the current trends and emergent threats and actors targeting financial services
- Extensive knowledge of current exploits, tools and techniques
- Evidence of experience with defensive tools such as IDS / WAF / SIEM technologies and their content
- Working knowledge of various operating systems (Windows, Linux), Active Directory and common systems administration tasks
- Proven ability to troubleshoot anomalies across a wide variety of tests
- Show attention to detail when examining data and communicating recommendations while providing sufficient technical detail to show data gathering and analysis to support recommendations
Desirable
- Certifications in a security relevant domain e.g. CISSP
- Experience in malware research
- Previous experience using Splunk and the ability to query and modify dashboards
- Ability to script custom actions with PowerShell, Bash
