Cyber Security Incident Response Analyst II

About The Position

Requirements

• Education and/or experience typically obtained through completion of a Bachelor’s degree or 2 year degree in Computer Science, Engineering, Math or Physical Science.
• Minimum 4 years of information security technology experience
• Proven analytical skills across various technologies
• Intermediate understanding of Networking and security concepts
• Intermediate understanding of Windows, Linux/Unix and Mac Operating Systems, and Cloud environment structures, analytical process of each, and knowledge on mitigation tactics.
• Experience in identifying, triaging, and escalating tickets based on severity and malicious activity.
• Experience in analyzing malware automated and manually and determining IOC’s
• Experience in conducting threat hunts for malicious activity
• Experience in responding to malicious threats coming from various sources
• Experience with the incident response process
• Ability to work within a team environment as well as independently
• Effective communication skills to speak and write for all technology experience levels.
• Effective interpersonal skills, able to comfortably present to peers, coworkers, and customers
• A propensity for continued development of skills though research and training
• Background and drug screen.

Nice To Haves

• Additional related education, certifications and/or experience is beneficial
• Working experience in cloud technology security
• Experience utilizing Security Orchestration Automation Response (SOAR) tools

Responsibilities

• Leads analyst requests for new or modified cyber security alerts
• Performs detection and investigative analysis activities for a variety of digital devices, computers, storage media, servers, networks, and cloud-based services
• Performs advanced host and network forensics and malware analysis
• Investigates and responds to incidents; provides recommendations to improve company’s security posture. Escalates complex issues as needed.
• Performs security incident handling efforts in response to a detected incident, and coordinates with other stakeholders
• Performs the tracking of investigations and incidents through resolution
• Performs standard procedures for incident response to counteract the detected threats
• Uses data collected from a variety of cyber defense tools (e.g., IDS alerts, firewalls, network traffic logs) to analyze events that occur within their environments for the purposes of mitigating threats.
• Performs network/system/application/log intrusion detection analysis and trends
• Performs moderately complex analysis of potentially malicious activities and software
• Maintains awareness of trends in security, regulatory, technology, and operational requirements
• Maintains awareness of current threat landscape, including adversary tactics, techniques, and procedures.
• Creates procedural documentation and tools for automated analysis and correlation activities
• Represents the Security Operations team at internal and external threat intelligence and cybersecurity forums
• Performs on-call activities when required
• Ensures the company's commitment to protect the integrity and confidentiality of systems and data.

Benefits

• Healthcare Coverage – Competitive medical (PPO/HDHP), dental, and vision plans as well as company contributions to your Health Savings Account (HSA) or pre-tax savings through flexible spending accounts (FSA) for commuting, health & dependent care expenses.
• 401(k) Retirement Plan – Featuring a 100% Company Safe Harbor Match on your first 6% deferral immediately upon eligibility.
• Paid Time Off – Flexible Time Off for Exempt (salaried) employees, as well as generous PTO for Non-Exempt (hourly) employees, plus 11 paid company holidays and a paid volunteer day.
• 12 weeks of Paid Parental Leave
• Maven Family Planning – provides support through your Parenting journey including egg freezing, fertility, adoption, surrogacy, pregnancy, postpartum, early pediatrics, and returning to work.