Security Analyst

3 Weeks ago • All levels • Cyber Security

Job Summary

Job Description

The Security Analyst (Digital Forensics and Incident Response) at Ubisoft Shanghai's SOC resolves malware, phishing, data leaks, and other security issues. Responsibilities include analyzing security alerts, querying logs for IOCs and TTPs, identifying root causes of cyber issues, coordinating with IT teams for resolution, creating post-mortem reports, developing response procedures, automating playbooks, collaborating with other security teams, and supporting threat hunting. The role involves using Splunk, Crowdstrike, and Microsoft E5 tools, and requires expertise in SIEM querying, endpoint security, and digital forensics. The analyst acts as a central point of contact within the global incident response team, coordinating incident resolution and working with stakeholders, including management.
Must have:
  • SIEM querying expertise
  • Endpoint AV/EDR knowledge
  • Digital forensics skills
  • Threat actor TTP knowledge
  • Incident response experience
  • Root cause analysis
Good to have:
  • Threat hunting experience
  • Experience with Splunk, Crowdstrike, Microsoft E5

Job Details

Company Description

Ubisoft’s 20,000 team members, working across more than 30 countries around the world, are bound by a common mission to enrich players’ lives with original and memorable gaming experiences. Their commitment and talent have brought to life many acclaimed franchises such as Assassin’s Creed, Far Cry, Watch Dogs, Just Dance, Rainbow Six, and many more to come. Ubisoft is an equal opportunity employer that believes diverse backgrounds and perspectives are key to creating worlds where both players and teams can thrive and express themselves. If you are excited about solving game-changing challenges, cutting edge technologies and pushing the boundaries of entertainment, we invite you to join our journey and help us create the unknown.

Created in 1996, Ubisoft Shanghai studio, is a vibrant and exciting place where our 400+ talents get opportunities to either co-develop great AAA blockbuster games, create cutting-edge online games or produce fun mobile games.

 

Job Description

Summary

The Security Analyst (Digital Forensics and Incident Response) as part of the Incident Response team within the SOC, works to resolve reports of malware, phishing, data leaks all other identified security issues.

With your technical expertise of querying data with multiple tools you will identify the root cause of cyber security issues then coordinate across IT teams to resolve them. In collaboration with the Fraud and Investigation team you will also assist with joint cyber/insider threat investigations.

Incidents assigned to you will be taken from initial report to resolution, delegating responsibilities to other IT teams where necessary and coordinating all actions with stakeholders, including management.

You’ll also be providing feedback on security detections to the SOC team, assist with tuning alerts and assist with designing new detections. When time permits you will also support threat hunting efforts and detect undiscovered malicious behaviors.

Responsibilities

Acting as a central point of contact within the global incident response team, the Security Analyst will:

  • Review & respond to alerts presented in security tools.
  • Coordinate or escalate the resolution of security incidents.
  • Query and analyze log sources in the SIEM for IOCs, attacker TTPs and evidence of suspicious behavior.
  • Identify security risks, find the root cause and bring risk to an acceptable level for management.
  • Write post-mortem report and present them to stakeholders.
  • Develop and maintain procedure to respond to detections.
  • Collaborate with other teams to automate playbooks.
  • Meet with adjacent security department teams to communicate incident trends.
  • Automate follow ups, escalations, and reminders to focus on operational goals.
  • Extract IOCs & TTPs from previous attacks and coordinate with other teams to reduce incident reoccurrence.
  • Use open source and internal information to gather knowledge on recurring threat actors

For additional information, our team uses Splunk, Crowdstrike, Microsoft E5 (Defender, MCAS, E-Discovery), ideally you have experience with these tools or an equivalent.

Qualifications

Education & Experience

  • Bachelor’s in Computer Science, Cyber Security or IT College Degree in a related discipline;
  • Previous experience in Security Operating Center a plus.
  • Experience with one or more of: threat hunting, digital forensics, incident response and corporate investigations.

Knowledge & Skills

  • Knowledge of one or more of:
    • SIEMs: Query expertise (Logical operators AND, OR, NOT, Filtering, Time bounding, wildcards, regexes) 
    • Endpoint AV & EDR experience: Knowledge of inspecting process trees, registry modifications & network activity
    • Digital Forensics Tools: Forensic Capture, Disk Image Analysis, Memory Analysis
  • Knowledge of threat actor TTPs and typical attack methods defined in MITRE ATT&CK.
  • You know where malware hides, how it evades detection, how to find it, how to remove it and how to prevent reinfection.
  • Experience in remediating large security incidents such as Data Breaches, Ransomware, Cryptocurrency Miners and insider threat activity.
  • Demonstrating motivation through your involvement in the security community - having personal projects, certifications, participation in CTFs, home security lab or keeping updated on security trends;
  • English is required both orally and written.

Additional Information

While the team operates under a “follow the sun” coverage model and not on a 24/7 rotation or night shift basis, on rare occasions you may be called to assist with resolving major incidents outside of standard working hours.

Due to the nature of incident response, you will be working in a fast-paced environment and must be efficient at prioritizing multiple critical incidents.

Skills and competencies show up in different forms and can be based on different experiences, that's why we strongly encourage you to apply even though you may not have all the requirements listed above.

At Ubisoft, you can come as you are. We embrace diversity in all its forms. We’re committed to fostering a work environment that is inclusive and respectful of all differences.

 

Ubisoft is a leading creator, publisher and distributor of interactive entertainment and services, with a rich portfolio of world-renowned brands, including Assassin’s Creed, Just Dance, Tom Clancy’s video game series, Rayman, Far Cry and Watch Dogs. The teams throughout Ubisoft’s worldwide network of studios and business offices are committed to delivering original and memorable gaming experiences across all popular platforms, including consoles, mobile phones, tablets and PCs.

Similar Jobs

Revolgy - L2 Cloud Ops Engineer

Revolgy

(Remote)
2 Months ago
The Walt Disney Company - Software Engineer II

The Walt Disney Company

Seattle, Washington, United States (On-Site)
2 Weeks ago
Anavation - Senior Cloud Developer

Anavation

Clarksburg, West Virginia, United States (Remote)
1 Week ago
Next Level Business Services - Splunk Consultant

Next Level Business Services

Pleasanton, California, United States (On-Site)
6 Months ago
Next Level Business Services - .Net with L2 Production Support Raleigh, NC

Next Level Business Services

Raleigh, North Carolina, United States (On-Site)
6 Months ago
Snyk - Implementation Consultant

Snyk

Bucharest, Bucharest, Romania (Remote)
1 Month ago
Google - Senior Validation Security Consultant

Google

Reston, Virginia, United States (On-Site)
2 Weeks ago
Google - Security Consultant Architect

Google

Atlanta, Georgia, United States (On-Site)
2 Weeks ago
Microsoft - Principal Product Manager

Microsoft

Redmond, Washington, United States (On-Site)
2 Weeks ago
Google - Regional Security Architect, Security Operations, Public Sector

Google

Reston, Virginia, United States (On-Site)
1 Week ago

Get notifed when new similar jobs are uploaded

Similar Skill Jobs

Gigamon - Sr Staff Solutions Engineer(SIEM & Observability)

Gigamon

Chennai, Tamil Nadu, India (Hybrid)
2 Months ago
spauldingridge - Integrations Architect

spauldingridge

Chicago, Illinois, United States (On-Site)
19 Hours ago
Experian - Software Development Staff Engineer

Experian

Allen, Texas, United States (Hybrid)
1 Week ago
Tekion Corp - IT Systems Engineer

Tekion Corp

Bengaluru, Karnataka, India (On-Site)
1 Day ago
Visa - Staff Systems Engineer - Splunk Administrator - PRE

Visa

Austin, Texas, United States (Hybrid)
6 Months ago
Shyft Labs - Lead Software Engineer

Shyft Labs

Noida, Uttar Pradesh, India (Hybrid)
3 Months ago
The Walt Disney Company - Senior Software Engineer

The Walt Disney Company

Santa Monica, California, United States (On-Site)
2 Weeks ago
Info Stretch - Senior Engineer

Info Stretch

Chennai, Tamil Nadu, India (On-Site)
6 Months ago
CleverTap - Senior Backend Engineer (Java & Mongo DB)

CleverTap

Mumbai, Maharashtra, India (Hybrid)
6 Months ago
Gigamon - Sr Staff Solutions Engineer

Gigamon

Chennai, Tamil Nadu, India (Hybrid)
2 Months ago

Get notifed when new similar jobs are uploaded

Jobs in Shanghai, Shanghai, China

MIQ Digital - Product Lead - China

MIQ Digital

Shanghai, China (On-Site)
8 Hours ago
Canva - Quality Engineer - Internationalization

Canva

Wuhan, Hubei, China (Remote)
4 Weeks ago
Google - Strategic Partnerships Development Manager, Sellside Monetization

Google

Beijing, Beijing, China (On-Site)
2 Weeks ago
Spin Master - Senior Manager, Mechanical Design

Spin Master

Guangdong Province, China (On-Site)
1 Month ago
Tencent - Senior Channels Marketing Manager - PUBG Mobile

Tencent

Shenzhen, Guangdong Province, China (On-Site)
1 Month ago
NVIDIA - DFX Methodology Engineer

NVIDIA

Shanghai, Shanghai, China (On-Site)
1 Month ago
Blizzard Entertainment - Sr. Systems Engineer I

Blizzard Entertainment

Shanghai, Shanghai, China (On-Site)
2 Months ago
NVIDIA - Senior C++ Software Engineer - Apache Spark Solution

NVIDIA

Shanghai, Shanghai, China (On-Site)
3 Months ago
Moloco - China Regional Strategy & Operations Senior Analyst

Moloco

Beijing, China (On-Site)
6 Hours ago
Riot Games - Senior Game Product Manager (Monetization and Growth) - FFGS

Riot Games

Shanghai, Shanghai, China (On-Site)
5 Months ago

Get notifed when new similar jobs are uploaded

Cyber Security Jobs

Microsoft - Senior Product Manager

Microsoft

(On-Site)
3 Days ago
Thatgamecompany - Senior Game Security Engineer - China

Thatgamecompany

Shanghai, Shanghai, China (On-Site)
1 Month ago
Nintendo - Security Engineer

Nintendo

Redmond, Washington, United States (Hybrid)
4 Months ago
Google - Software Engineer III, Security/Privacy, Google Cloud Security and Privacy

Google

New York, New York, United States (On-Site)
2 Weeks ago
Google - Senior Validation Security Consultant

Google

Reston, Virginia, United States (On-Site)
1 Week ago
ION - Senior Security Architect

ION

Collecchio, Emilia-Romagna, Italy (On-Site)
6 Months ago
PwC - Guidewire Developer

PwC

Johannesburg, Gauteng, South Africa (On-Site)
5 Months ago
ByteDance - Security Operations Manager - Jakarta

ByteDance

Jakarta, Jakarta, Indonesia (On-Site)
2 Weeks ago
Trend Micro - (Sr.) Backend Engineer

Trend Micro

Taipei City, Taiwan (On-Site)
6 Months ago
Fluence - Cybersecurity Engineer (m/f/d)

Fluence

Erlangen, Bavaria, Germany (Hybrid)
6 Months ago

Get notifed when new similar jobs are uploaded

About The Company

Ubisoft’s 21,000 team members, working across more than 30 countries around the world, are bound by a common mission to enrich players’ lives with original and memorable gaming experiences.


Their commitment and talent have brought to life many acclaimed franchises such as Assassin’s Creed, Far Cry, Watch Dogs, Just Dance, Rainbow Six, and many more to come. 


Ubisoft is an equal opportunity employer that believes diverse backgrounds and perspectives are key to creating worlds where both players and teams can thrive and express themselves. 


If you are excited about solving game changing challenges, cutting edge technologies and pushing the boundaries of entertainment, we invite you to join our journey and help us Create the unknown.

Montreal, Quebec, Canada (Hybrid)

Paris, Île-de-France, France (Hybrid)

Pune, Maharashtra, India (Hybrid)

Montpellier, Occitanie, France (Hybrid)

Bucharest, Bucharest, Romania (Hybrid)

Paris, Île-de-France, France (Hybrid)

Chengdu, Sichuan, China (On-Site)

Montreal, Quebec, Canada (On-Site)

View All Jobs

Get notified when new jobs are added by Ubisoft

Level Up Your Career in Game Development!

Transform Your Passion into Profession with Our Comprehensive Courses for Aspiring Game Developers.

Job Common Plug