Job Description

Job Summary:

• Demonstrate at least 6 of the skills listed in the "Technical Skill" section
• Daily review of SIEM to monitor activities within the company environments
• Follow existing incident playbooks
• Contribute to the improvement and creation of playbooks
• Learn new skills across all technical domains
• Use public cyber security resources (e.g. sites/blogs/podcasts) to stay up to date with latest news / threats
• Show a commitment to progress towards L2

Essential Responsibilities & Duties:

• Conducts network monitoring and intrusion detection analysis using various computer network defense tools, such as intrusion detection/prevention systems (IDS/IPS), firewalls, host-based security systems (HBSS), etc.
• Correlates network activity across networks to identify trends of unauthorized use
• Researches emerging threats and vulnerabilities to aid in the identification of incidents
• Analyze the results of the monitoring solutions, asses and correlate the output using automated systems. Conduct triage, event correlation, classification and analysis of these events such that incidents are investigated and logged or followed-up using the existing information risk incident management processes
• Provide pro-active feedback which will enable improvement of the current monitoring rules, based on information and knowledge/experience from Schlumberger and Industry best practices.
• Capable of working unsupervised, but able to interact and give direction to business and IT teams in line within established corporate security policies and processes.
• Develops and maintains constructive and cooperative working relationships team members
• Demonstrates the ability to drive for creative, innovative ways to solve problem or minimize risk
• Consultative skills and ability to work cross-functionally
• Focused and results oriented
• Ability to react quickly, decisively and deliberately in high-stress, high-impact situations
• Strong decision-making capabilities, with a proven ability to weight the relative costs and benefits of potential actions and identify the most appropriate one

Technical Skills:

• Information Security tools & packet analyses tools (e.g. CB, Wireshark)
• Intrusion Detection (e.g. IDS/IPS tools)
• Firewall (e.g. Pato Alto Networks)
• Security Information and Event Management (SIEM) - Splunk is preferred
• Strong Windows and Linux administration experience
• Programming/Scripting tools (e.g. Python, Bash)
• Internet Protocols and Services (e.g. TCP/IP, FTP, HTTPS, SSH)
• Networking infrastructure (Cisco is preferred)
• Vulnerability Testing tools (e.g. Nessus, Kali)
• Network scanning tools (e.g. NMAP)
• Awareness of SCADA / IIoT technologies
• Log analysis/ Windows event analysis
• Network and Host forensics
• Malware analysis and memory analysis
• Antivirus solutions, virus outbreak management and the ability to differentiate virus activity from directed attack patterns
• SharePoint and PowerBI experience is an advantage
• Strong troubleshooting and root cause analyses skills

Current (not future/or planned) Certification are preferable

• SANS (SysAdmin, Audit, Network, and Security) GIAC (Global Information Assurance Certification) certification in Cyber Defense, Penetration Testing, Incident Response or Forensics
• Certified Information Systems Security Professional (CISSP)
• Certified Information Security Manager (CISM)
• EC-Council certification: CEH (Certified Ethical Hacker), ECSA (Certified Security Analyst), CHFI (Computer Hacking Forensic Investigator), CND (Certified Network Defender)
• Cisco Certified Network Associate (CCNA)

Qualifications:

• Bachelor's or Master's degree in a technical field such a Computer science, Cyber Security, Management Information Technology, Engineering, and Mathematics is strongly preferred
• Information Security Experience
• Must be able to work flexible hours including early/late shift, weekends, and public holiday
• Fluent in English and good communication skills
• Ability to read and understand additional languages is a strong advantage
• Must possess good work habits, a strong work ethic, and be able to adhere to company work hours, policies, and standard business etiquette
• Keen to continue self-development

Schlumberger is an equal employment opportunity employer. Qualified applicants are considered without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, age, disability, or other characteristics protected by law.