Job Summary:
As a Senior Information Security Analyst, you will play a critical role in our Security Operations Center (SOC). You will participate in security monitoring, incident response, threat intelligence, vulnerability management and other cybersecurity related activities. Your expertise will help protect our organization and customers' information from sophisticated cyber threats.
Key Responsibilities:
Lead Incident Investigations and Cybersecurity Response.
Assist with Vulnerability Assessments and prioritizing risk.
Analyzing security alerts to identify the cause and update incidence responses and disaster recovery plans.
Triage alerts originating from various inputs, such as intrusion detection/prevention systems, security information and event management (SIEM), firewalls and host-based security systems.
Conduct log-based and endpoint-based alert reviews for anomalous activity.
Investigate reported phishing emails malicious files / URLs and take appropriate action.
Drive creation and tuning of automation responses, using best in class SOAR technologies.
Assist with incident tracking and documentation.
Stay current on emerging threats and vulnerabilities to aid in the identification of incidents.
Provide users with security response support, including mitigating actions to contain activity and assisting with forensics analysis when necessary.
Some on-call work may be required.
Experience & Education Requirements:
Bachelors in Computer Science, Information Security or equivalent work experience.
Advanced understanding of Information Security, compliance, and other security standard methodologies and principles, such as NIST CSF, MITRE ATT&CK, and CIS Controls.
Advanced experience with IT platforms such as Windows, MacOS
Advanced understanding of network concepts such as the OSI model.
Good document creation skills for updating or creating response playbooks.
At least 3 years Security Operations, Security Engineering, or other Cybersecurity technical experience required.
Nice to have:
YARA \ KQL language
AWS
Service Now \ Jira
A highly self-motivated and proactive individual with sharp attention to detail skills who wants to learn and grow.
A great analyzer, trouble-shooter, and problem solver who understands security operations, programming languages, and architecture.
Threat Hunting experience is a plus