Cyber Security Analyst

at Trillium Staffing Solutions
Location Plano, TX
Date Posted September 25, 2021
Category Default
Job Type Full-time

Description

Now hiring a Cyber Security AnalystTrillium Technical is now seeking a Cyber Security Analyst in Plano!

In this role, you will support the 24/7 Cyber Fusion Center by monitoring and responding to alerts. This position conducts in-depth analysis of security events with the specific ability to identify Indicators of Compromise, perform intrusion and root cause analysis, and proactively take actions to mitigate potential damage to our cyber ecosystem.

Key Responsibilities:
• Works in 24x7 Cyber Defense Center to provide monitoring and detection/response services
• Detects and responds to security incidents by leveraging our detection/response platforms.
• Triage security incidents and perform in depth analysis through the use of Cyber Threat Intelligence, intrusion detection systems, firewalls and other boundary protection devices.
• Escalates cyber security events according to playbooks and standard operation procedures (SOPs).
• Assists with containment and remediation of threats during incidents.
• Uses internal ticketing system to track investigated incidents and capture relevant details.
• Conducts threat hunting activities based on internal and external threat intelligence.
• Performs triage of service requests from customers and internal teams.
• Provides executive facing written updates and reports.
• Provides executive facing written updates and reports.
• Assists training junior team members

If interested, please apply today!• Ability to work various shifts supporting the 24x7 Cyber Fusion Center (our day shift is: 6am to 6pm, and the night shift is: 6pm to 6am as we run 24/7 SOC operation, and that includes on weekends as well. It will be 2 days off then 2-3 days on. Day and night shift would rotate every few months.)
• 2+ years of cyber security experience with the focus on Incident Response or Security Operations
• BA/BS in Engineering, Computer Science, Information Security, or Information Systems or equivalent related work experience
• Experience interfacing with internal and external customers providing remediation actions to non-technical audience
• Working knowledge of an enterprise level security technologies such as SIEM and ticketing systems.
• Willing to work in a highly collaborative environment with a focus on project delivery and desired business outcomes.

Preferred Qualifications:
• Experience with Splunk and other SIEM platforms, Enterprise Intrusion Prevention Systems, Endpoint Detection tools, and other security products
• Experience supporting large scale incident investigations
• Security certifications: Security+, CASP, GCFA, GCIH, GCFE. #CBT

Drop files here browse files ...