Cyber Threat Analyst

About The Position

Requirements

• Years of Applicable Experience - 2 or more years
• High School Diploma or GED (Required)
• Required participation in 24X7 on-call rotation and availability to assist with issues that arise outside of business hours.
• Remain in a stationary position for prolonged periods of time
• Be adaptive and change priorities quickly; meet deadlines
• Attention to detail
• Operate computer programs and software
• Ability to communicate effectively with audiences in person and in electronic formats.
• Day-to-day contact with others (co-workers and/or the public)
• Making independent decisions
• Ability to work in a collaborative business environment in close quarters with peers and varying interruptions

Nice To Haves

• Experience working with SIEM systems, threat intelligence platforms, security automation and orchestration solutions, intrusion detection and prevention systems (IDS/IPS), file integrity monitoring (FIM), DLP and other network and system monitoring tool
• Working knowledge/experience with network systems, security principles, applications and risk and compliance initiatives such as Payment Card Industry (PCI), Health Information Portability and Accountability Ace (HIPAA), Sarbanes-Oxley Act (SOX) and the General Data Protection Regulation (GDPR)
• Experience with the following skills: network defense, ethical hacking, incident response, computer forensics, and reverse engineering
• Track record of acting with integrity, taking pride in work, seeking to excel, being curious and adaptable, and communicating effectively
• 3-5 years of information security monitoring and response or related experience desired
• Experience with user and entity behavior analytics (UEBA) and security orchestration and automation (SOAR) desired
• Bachelor’s Degree; SANS GCIH or GCIA; Security+, Network+, CISSP a plus

Responsibilities

• Monitoring and Responding to Security Events Monitor security events from various sources, including endpoints, networks, SIEM systems, and threat intelligence platforms. Respond to these events promptly and effectively.
• Incident Analysis and Investigation Conduct detailed analyses of security incidents to understand the nature and impact of the threat. Identify the source and destination IP addresses, assess the impact of the attack, and investigate the attack using internal and external tools.
• Documentation and Reporting Document all security events and incidents thoroughly. Create incident timelines, record evidence, and prepare detailed reports on findings.
• Recommend enhancements, implement, and manage security tools Provide feedback around current monitoring and alerting to improve detection and alerting. Enhance analysis through automation. Participate in the administration and/or review of access reviews, firewall rule reviews, quarterly web application firewall reviews, and web proxy policy exceptions.
• Reduce downtime and ensure business continuity Proactively notifying the appropriate stakeholders about serious security events.
• Mentorship and Training Provide guidance and support to junior analysts, helping them develop their skills and knowledge.
• Proactive Security Measures Involved in proactive security measures, such as threat hunting and vulnerability assessments, to identify and mitigate potential threats before they can cause harm.

Benefits

• Health, dental, vision, life and disability insurance
• 401k retirement program
• Paid time off
• Participation in Premier’s employee incentive plans
• Tuition reimbursement and professional development opportunities
• Perks and discounts
• Access to on-site and online exercise classes