Security Analyst lll

About The Position

Requirements

• 5+ years of hands-on experience with a focus in areas such as systems, network, or information security / cybersecurity
• 3+ years of experience in phases of Cybersecurity Incident Response including preparation, analysis, notification, response, recovery, and post-mortem
• Detail Oriented: Ability to consistently follow processes and highlight areas for improvement
• Communication Skills: Must demonstrate strong written and oral communication skills. Establish trust and business relationships with internal stakeholders.
• Strong relationship skills and collaborative style to enable success across multiple partners.
• Organizational Skills: Must demonstrate ability to keep multiple Incident Responses organized and have a handle of each status to ensure timely delivery
• Strong technical experience and familiarity with various types/techniques of cyber-attacks, and with incident response and threat hunting lifecycles
• Familiarity with Cyber Kill Chain and ATT&CK Framework and how to leverage in Security Operations
• Exceptional ability to conduct cybersecurity investigations, analyze and distill relevant findings and determine root cause
• In-depth understanding of threat landscape and indicators of compromise.
• Strong communication, presentation, and leadership skills along with the ability to work in a highly collaborative environment.
• Manages multiple priorities in a high-pressure environment.

Nice To Haves

• Professional Certifications are preferred (Security+, CISSP, GCIH, GCFA, GCFE)

Responsibilities

• Serve as an escalation point for cybersecurity incidents not resolved by analysts or SOC
• Provide guidance and mentorship to improve analyst skill sets and ensure delivery of high-quality analysis and work products
• Conduct threat hunting activities utilizing SOC tools and document findings
• Collaborate with other threat intelligence analysts to identify assets for threat hunting activities
• Monitors and evaluates systems and procedures to protect client environments from unauthorized access.
• You will be a key technical resource in performing analysis, conducting investigations, understanding scope, identifying TTPs, and taking response actions
• Collaborate with Engineering team members to build and develop solutions and tools that identify and mitigate risk.
• Translate use cases into technical requirements and drive actionable results.
• Security Awareness: Develop content for organization wide and targeted security awareness training.
• Present relevant information security topics through a variety of forums depending on the audience.
• Manage complex and confidential investigations, providing timely and fact-based reporting to senior management
• Perform technical cybersecurity investigations on security incidents, root cause analysis, recommend mitigations
• Provide technical incident response guidance to the incident response team
• Assist with the creation and refinement of incident response run books
• Facilitate education assessment activities such as phishing, smishing, vishing to evaluate security training effectiveness