Job Purpose
At Emirates, we connect the world through our global hub in Dubai and are committed to constant innovation to ensure our customers ‘Fly Better’. As a Principal Engineer Forensic Analyst, you will join our cutting-edge CyberSecurity team, where your expertise will be crucial in investigating data breaches, critical security incidents, and cyber-criminal activities.
Location: Dubai, United Arab Emirates |
Job Code ID: 240001SS |
Closing Date: 01 Sep 2024 |
Join Emirates Group IT: a pioneer in aviation innovation and a leader in the industry. Become a vital part of our CyberSecurity team, which is dedicated to protecting our digital assets by monitoring threats, responding to incidents, managing vulnerabilities, and ensuring compliance with security policies and regulations.
Responsibilities as a Principal Engineer Forensic Analyst:
Advanced Adversary Analysis: Perform advanced analysis of adversary tradecraft, malicious code, and Advanced Persistent Threat (APT) capabilities. |
Incident Investigation: Investigate complex security incidents and data breaches, providing comprehensive technical reports and recommending corrective actions. |
Cyber Forensics: Conduct forensic, malicious code, and packet-level analysis to reverse engineer incidents. |
Countermeasure Development: Recommend countermeasures based on the identified techniques, tactics, procedures, and behavior patterns of adversaries. |
Data Retrieval and Analysis: Utilize specialized methods to retrieve and analyze data linked to criminal activities such as network intrusions, hacking, and online fraud. |
Incident Response Enhancement: Coordinate incident drills (purple teaming), develop alert criteria (use-cases), and contribute to the improvement of incident response capabilities. |
Qualifications & Experience |
To be successful in the Principal Engineer Forensic Analyst role, you must have: Experience: 8+ years in Information Technology, with a focus on computer forensics, static code reverse engineering, and advanced network analysis. Education: A Degree or Honours (12+3 or equivalent) in Computer Science, Information Systems, Engineering, Telecommunications, or other related disciplines. Skills: Ability to evaluate threat actors, gather intelligence, and develop predictive understanding of adversarial strategies. Technical Expertise: Demonstrated expertise in deploying and maintaining open-source network security monitoring tools, and experience in technical writing for CyberSecurity documentation. Certifications: Certifications such as OSCE, GREM, GCFA, GNFA, and ENCE are advantageous. |
Experience: Extensive IT Background: A minimum of 8+ years of experience in Information Technology is essential. Your expertise should be centered on key areas such as computer forensics, static code reverse engineering, and advanced network analysis. This extensive experience will enable you to tackle complex cybersecurity challenges, analyze sophisticated cyber threats, and contribute to the overall security posture of the organization. Hands-On Experience: Proven hands-on experience in dealing with real-world cyber incidents, including investigating data breaches, mitigating security vulnerabilities, and implementing effective countermeasures. Your ability to handle advanced persistent threats (APTs) and understand adversary tactics, techniques, and procedures (TTPs) will be critical in this role. Education: Academic Background: A Degree or Honours (12+3 or equivalent) in Computer Science, Information Systems, Engineering, Telecommunications, or other related scientific or technical disciplines is required. This educational foundation will provide you with the necessary theoretical knowledge to understand and apply advanced cybersecurity concepts, methodologies, and tools. Continued Learning: A commitment to continuous learning and staying updated with the latest developments in cybersecurity is essential. The field of cybersecurity is constantly evolving, and staying ahead of emerging threats and technologies will be vital to your success in this role. Skills: Threat Actor Evaluation: Ability to evaluate offensive and intelligence-based threat actors based on their motivation and common TTPs. This skill will allow you to anticipate and counteract the strategies used by adversaries, thereby strengthening the organization’s defense mechanisms. Intelligence Gathering: Experience in gathering and analyzing open-source and controlled intelligence to develop a predictive understanding of adversarial strategies, priorities, and overlapping interests. Your ability to synthesize this information will be crucial in guiding the organization’s cybersecurity strategy and proactive threat hunting activities. Problem-Solving and Analytical Skills: Strong analytical and problem-solving skills are essential for diagnosing complex security incidents, reverse engineering malware, and developing comprehensive incident response plans. Your ability to think critically and adapt to rapidly changing scenarios will set you apart in this role. Technical Expertise: Network Security Monitoring: Demonstrated expertise in deploying, maintaining, and optimizing open-source network security monitoring and assessment tools. Your technical prowess will enable you to identify and respond to network intrusions, analyze packet-level data, and recommend appropriate remediation actions. Technical Writing: Experience in technical writing, particularly in the creation of detailed Event Bulletins, Cyber Digests, Quarterly Summary Reports, and Standard Operating Procedures (SOPs). Your ability to document and communicate complex technical concepts to both technical and non-technical audiences is a key requirement for this role. Certifications: Industry-Recognized Certifications: Holding certifications such as Offensive Security Certified Expert (OSCE), GIAC Certified Reverse Engineering Malware (GREM), GIAC Certified Forensics Analyst (GCFA), GIAC Certified Network Forensics Analyst (GNFA), and Encase Certified Examiner (ENCE) is advantageous. These certifications validate your specialized skills in key areas of cybersecurity and will enhance your credibility and effectiveness in the role. Commitment to Professional Development: A demonstrated commitment to obtaining and maintaining relevant certifications reflects your dedication to professional growth and excellence in the cybersecurity field. Continuous professional development will ensure you remain at the forefront of industry best practices and emerging threats. |
Salary & Benefits Join us as a Principal Engineer Forensic Analyst in a management role and enjoy an attractive tax-free salary, generous travel benefits, an excellent leave and healthcare package, transport benefits, life insurance, and more. Discover what it’s like to live and work in our fast-paced, cosmopolitan city in the Dubai Lifestyle section of our website |
Job Code ID: 240001SS |
Closing Date: 01 Sep 2024 |
Disclaimer
The information provided on GulfNukari is for general purposes only. We strive to keep the information accurate and up to date, but we make no guarantees of any kind. Use of this information is at your own risk.