Claroty-Advanced Services Analyst

  • Claroty
  • Tel Aviv, Israel
  • Full-time
About The Position

Claroty is the world’s leading industrial cybersecurity company. Leveraging broad expertise in the Operational Technologies (OT)that run the world’s critical infrastructure, the Claroty Platform provides visibility across a rapidly growing and opaque attack surface. Its Deep Packet Inspection (DPI) technology delivers award-winning vulnerability and threat monitoring, enabling our customers to preserve reliability and trust in the face of mounting operational risk. Founded in 2014 as the second portfolio company of Team8, Claroty is headquartered in New York City with offices in Tel Aviv. It is backed by the world’s leading cybersecurity and technology investors, including Bessemer Venture Partners and Temasek Holdings.

We are looking for experienced Cybersecurity professional with knowledge of Industrial Controls system environments to join a new team within Claroty.

This role will report directly to the Global head of advanced services.

RESPONSIBILITIES

  • Conduct cyber security investigations in OT networks of our customers
  • Deliver webinars, workshops and threat intel sharing sessions
  • Identify and analyze potential security incidents that currently exist or may pose a potential threat to customer networks
  • Prioritize Alerts and Insights for customers
  • Provide advisory, presentations and reports to customers
  • Create playbooks and standard operating procedures for alerts and insights
  • Create reports of emerging threats to industrial networks for customers
  • Create advanced scripts to automate tasks
  • Develop advanced detection rules utilizing the products detection engines.
  • Work closely with Claroty R&D and other internal departments to improve and enhance the products and services offered
  • Help develop and improve processes and procedures
  • Provide training and knowledge transfers when required
Requirements:
  • 3+ years of proven technical experience in cyber security.
  • Knowledge and experience with coding and scripting
  • knowledge of Linux and experience working with SQL
  • Advanced understanding of the most of the common open-source detection tools Yara, Snort etc.
  • Experience with network intrusion detection systems
  • Experience and understanding of incident response methodologies and capabilities
  • Experience working with big data, analytics tools, and techniques
  • Knowledge and experience of MITRE ATT&CK and Kill Chain Frameworks.
  • Experience in Industrial control systems and the networking protocols of this environment
  • Understanding of risk and controls particularly in an Industrial control systems environment
  • Strong presentations, documentation, and training skills
  • Excellent interpersonal skills and ability to work unsupervised
  • High level of English
  • Ability to travel when required

Apply for this position