Security Operations Center Analyst

Cyber Data Analyst

Mercedes-Benz Research & Development Tel-Aviv is looking for an excellent Data Analyst to join our team.

We are looking for a skilled Data Analyst with experience in cybersecurity. Someone who is first and foremost an analytical thinker and enjoys working with diverse data sets and data types. Someone who enjoys a challenge and is solution oriented, is able to work simultaneously with many different people and domains, and is able to handle multiple tasks and projects in parallel. In addition to being a dynamic role, the analyst will get first-hand experience with Mercedes-Benz state-of-the-art automotive components and technologies.

The Data Analyst will be a part of the Security Monitoring Team and will be responsible for developing the analytical sensors of the monitoring system. This includes implementation and also developing processes and tools that will enhance our monitoring capabilities.

Main responsibilities:

SIEM rules/use-cases

• Work to be done mainly within SPLUNK environment
• Ideate new analytic rules/use-cases for security insights with various teams in the company
• Implement rules/use-cases and dashboards according to work plan
• Testing process for rules/use-cases
• Maintenance of live rules/use-cases

Documentation and process

• Document the implementation activities
• Document data used and relevant legal justification
• Follow the defined process for use cases implementation

Develop the analytics infrastructure

· Develop dashboards to monitor internal KPIs

· Ideate new data analytics needs – technologies or tools for example

· Define pre-processing requirements for on-boarding

Skills And Experience:

• Over 3 years experience working with monitoring systems handling large amounts of data
• Expertise in in developing DB languages, e.g.: SQL or SPL
• Basic Knowledge and capability in Python or other common programming languages
• Ability to document technical information
• Excellent written and verbal communication skills in English
• Advantage for Cyber Security domain knowledge and expertise
• Advantage for knowledge of computers/systems communication protocols
• Preference for experience with Splunk or other SIEM system or working in a SOC
• Preference for experience with logs originated from web and cloud technologies