Security Analyst

MSC Mediterranean Shipping Company
is a global leader in the shipping and logistics industry.

Founded in 1970 and headquartered in Geneva, Switzerland, MSC is a privately-owned organization led by the Aponte family.

Evolving from a single-vessel operation, MSC is now a globally respected company with a fleet of 760 vessels and over 180,000 employees.

With an integrated international network of road, rail, and sea transport resources, the company prides itself on delivering global service with local knowledge. Operating in 155 countries, MSC ensures direct communication with its representatives and offers various e-business solutions for digitalized cargo bookings.

In response to customer needs, MSC plays a significant role in driving the development of smart containers in the industry, helping to establish standards for digital shipping.

In 2019, MSC Technology Italy was established as a technological division of MSC with the goal of creating a Center of Excellence to support the MSC Group's business.
MSC Technology Italy is the first division located in the national territory, complementing existing offices in Geneva (the Group's headquarters), Warren (New Jersey, USA), and Chennai (India).

**SECURITY ANALYST**:
Within the Security Operations Center and under its governance, the Security Analyst mission is to protect information assets and detect, analyse and respond to security information and events. Security analysts should also ensure that the correct training is in place and that staff can implement procedures and policies. Security analysts work together with internal IT staff and business administrators to communicate information about security limitations and produce documentation.

THE ROLE
- Monitor, detect and respond to external and internal Cyber-attacks with processes, procedures, tools in place
- Detect weaknesses, and propose processes, procedures, tools to remove or mitigate them
- Install, Secure, Operate and troubleshoot Security solutions
- Industrialise processes, executed by Security operators

KEY RESPONSIBILITIES
- Build security alerts, dashboards and reports to support ongoing threat management activities
- Build and or operate security solutions, either technical or services.
- Conducting security audits
- Research new threats and build appropriate detective and protective measures
- Develop anomaly detection patterns across a broad range of technology and log sources
- Administer and support log platform
- Continuously improve existing data sources and on boarding of new data sources into central log infrastructure
- Assist management with the execution of information security strategy and road map
- Stay current with emerging technology trends and tools
- Collaborate with all IT team’s expert, and customers to ensure proper integration of solutions within MSC security policies
- Maintain proper documentation and training materials.

Additional responsibilities
- Provide timely, complete and accurate responses to the Security Operations Center Manager questions and inquiries in a positive and constructive manner
- Complete ad hoc tasks and projects as required by the Company
- Incorporate good practices and quality processes in activities and Projects
- Participate in the promotion of the IT security good practices and policies among the business.

Qualifications and experience

**General**:

- Five years’ experience in IT Security Position
- Degree in Computer Science or related technical degree
- Must be team oriented and at the same able to work with limited supervision
- Ability to identify priorities and ensure that work is completed within timeframes
- Strong verbal and written communication skills, a sense of diplomacy, and decision making skills to handle the often fast-paced role of an incident handler

**Technical**:

- Security components (firewall, WAF, log management, NAC, IPS, IDS, HIDS, SIEM )
- IT infrastructure background
- Working knowledge of networking, secured communications
- System/Application vulnerabilities and exploitation
- Cloud technology (SaaS, IaaS, PaaS) and associated digital forensics and incident response techniques

**Other**:

- Fluency in English (oral and written)