Cyber Security Analyst

at The Judge Group
Location The Colony, TX
Date Posted September 24, 2021
Category Default
Job Type Full-time

Description

Location: The Colony, TX
Description: Our client is currently seeking a Cyber Security Analyst!

This job will have the following responsibilities:

  • In this role, you will support the 24/7 Cyber Fusion Center by monitoring and responding to alerts. This position conducts in-depth analysis of security events with the specific ability to identify Indicators of Compromise, perform intrusion and root cause analysis, and proactively take actions to mitigate potential damage to our cyber ecosystem.

KEY RESPONSIBILITES:

  • Works in 24x7 Cyber Defense Center to provide monitoring and detection/response services
  • Detects and responds to security incidents by leveraging our detection/response platforms.
  • Triage security incidents and perform in depth analysis through the use of Cyber Threat Intelligence, intrusion detection systems, firewalls and other boundary protection devices.
  • Escalates cyber security events according to playbooks and standard operation procedures (SOPs).
  • Assists with containment and remediation of threats during incidents. 
  • Uses internal ticketing system to track investigated incidents and capture relevant details.
  • Conducts threat hunting activities based on internal and external threat intelligence.
  • Performs triage of service requests from customers and internal teams.
  • Provides executive facing written updates and reports.
  • Provides executive facing written updates and reports.
  • Assists training junior team members

MINIMUM QUALIFICATION:

  • Ability to work various shifts supporting the 24x7 Cyber Fusion Center (our day shift is: 6am to 6pm, and the night shift is: 6pm to 6am as we run 24/7 SOC operation, and that includes on weekends as well. It will be 2 days off then 2-3 days on. Day and night shift would rotate every few months.) 
  • 2+ years of cyber security experience with the focus on Incident Response or Security Operations
  • BA/BS in Engineering, Computer Science, Information Security, or Information Systems or equivalent related work experience
  • Experience interfacing with internal and external customers providing remediation actions to non-technical audience 
  • Working knowledge of an enterprise level security technologies such as SIEM and ticketing systems.
  • Willing to work in a highly collaborative environment with a focus on project delivery and desired business outcomes.

PREFFERED QUALIFICATION:

  • Experience with Splunk and other SIEM platforms, Enterprise Intrusion Prevention Systems, Endpoint Detection tools, and other security products
  • Experience supporting large scale incident investigations
  • Security certifications: Security+, CASP, GCFA, GCIH, GCFE.

Contact: [Click Here to Email Your Resumé]

This job and many more are available through The Judge Group. Find us on the web at www.judge.com
Drop files here browse files ...