Sr Security Analyst
About The Position
Your Future Evolves Here Evolent partners with health plans and providers to achieve better outcomes for people with most complex and costly health conditions. Working across specialties and primary care, we seek to connect the pieces of fragmented health care system and ensure people get the same level of care and compassion we would want for our loved ones. Evolent employees enjoy work/life balance, the flexibility to suit their work to their lives, and autonomy they need to get things done. We believe that people do their best work when they're supported to live their best lives, and when they feel welcome to bring their whole selves to work. That's one reason why diversity and inclusion are core to our business. Join Evolent for the mission. Stay for the culture. What You’ll Be Doing: The Sr. Security Analyst serves a critical function on the security team preparing for, responding to, and investigating cyber events. What You’ll Be Doing: Using diligence, flexibility, and creativity to respond to a range of threat types. Triaging and remediating threats based on threat intelligence and active analysis of log data. Participation in all phases of incident response through containment, eradication, and recovery. Using host and network forensic techniques to investigate anomalies. Verifying information through non-technical investigative techniques like interviews with persons of interest. Performing root cause analysis and advising stakeholders on defense strategies. Drafting documentation for team playbooks and advising on prevention practices.
Requirements
- Bachelor’s or master’s degree in computer science, Information Security, or a related field is preferred.
- Expert-level capability in investigating threats in both Windows and Linux hosts.
- Deep understanding of the MITRE ATT&CK framework.
- Demonstrated experience with log analysis, filesystem forensics, network forensics, and malware analysis.
- Experience with a wide range of security tools including SIEM, secure email gateway, network and host-based IDS, WAF, network proxy, & endpoint protection.
- Familiarity with the current information security threat landscape, patterns & best practices.
- Prior experience working in a 24x7x365 operating environment.
- High speed internet over 10 Mbps and, specifically for all call center employees, the ability to plug in directly to the home internet router.
Responsibilities
- Responding to a range of threat types.
- Triaging and remediating threats based on threat intelligence and active analysis of log data.
- Participation in all phases of incident response through containment, eradication, and recovery.
- Using host and network forensic techniques to investigate anomalies.
- Verifying information through non-technical investigative techniques like interviews with persons of interest.
- Performing root cause analysis and advising stakeholders on defense strategies.
- Drafting documentation for team playbooks and advising on prevention practices.
Benefits
- comprehensive benefits (including health insurance benefits)
Stand Out From the Crowd
Upload your resume and get instant feedback on how well it matches this job.
What This Job Offers
Job Type
Full-time
Career Level
Mid Level
Number of Employees
501-1,000 employees
