Intrusion Detection Specialist

We are looking for a talented Intrusion Detection Specialist to enhance our information security. Our goal is to ensure having a streamlined and well-defined monitoring process of intrusion, while at the same time utilizing different tools to ensure our information is compliant to the Rakuten Group policy.

As a member of the IDS team, you will be working with the Head of the department and engineers to define the rules and policies of Intrusion. You will also work on different sets of alerts, prediction logic, and monitoring tools to ensure we got the alert right or before things go wrong.

Duties:
• Monitor regularly network infrastructure and framework, TCIP and IPSec, intrusion detection systems, security testing techniques, and protocols.
• Deploy and monitor critical network-centric solutions for any ambiguities or threats.
• Perform pen-testing and recommend defense methodology against intercepted threats and vulnerabilities.
• Provide consultation best practices related to risk mitigation and handling of critical cyber threats.
• Analyze and evaluate current and upgraded systems related to IT architecture, networking, automation, communication protocol, risk management, modeling, and simulation for reliability and accuracy.
• Document data gaps, operating scopes and collaborate with relevant stakeholders.
• Support incident management in any event of a compromise to network systems.
• Conduct or coordinate vulnerability scans, and penetration tests on campus systems, document findings, and recommend risk mitigation strategies.
• Operate, administer and monitor network and host-based intrusion detection/prevention systems
• Assist other technical support staff in identifying and implementing appropriate security safeguards, including patch application and anti-malware strategies.
• Analyze network traffic, intrusion attempts, activity logs, and system alerts for trends, anomalies, and potential security breaches.
• Develop scripts, tools, and procedures to automate scans, assessments, and other monitoring and discovery activities.

Attributes:
• Excellent organizational and communication skills (both oral and written).
• Strong interpersonal skills and the ability to effectively communicate with a wide range of individuals and constituencies in a diverse community.
• Prefer understanding and background with Intrusion Detection Systems and SIEM products.
• Prefer background in Incident Response.
• Prefer understanding and background with Firewalls and Networking.
• Knowledge and understanding of application security.
• Knowledge and/or experience in evaluation of security setup to meet business needs.
• Ability to present and explain complex technical topics, problems, alternative solutions to others.
• Interpreting Vulnerability Assessments.
• Background in multiple Operating Systems,
• Computer Engineering or related field with [X] years of experience as Intrusion Detection Specialist.
• Ability to identify abnormal activities through traffic analysis or forensic analysis with IDS sensors and tools related to network and host systems.
• Extensive knowledge of Internet Protocols like TCP/IP, Computer Networking, Telecommunication Systems, and frameworks.
• Expert in configuring Intrusion Detection Systems and can easily identify the normal flow of traffic with negligible false alarms.
• Hands-on experience in using open-source intrusion detection and monitoring tools like Noise, Snort, BRO, and Wireshark.
• Mentoring and training network engineers to identify red flags in a system