Sr. Security Analyst

ECSAL
84d
Match Resume

About The Position

ECS is seeking a Sr. Security Analyst to work in our Huntsville, AL office. Please Note: This position is contingent upon contract award. As a leading managed cybersecurity services provider, ECS delivers a highly tailored and customized offering to each customer. The Professional Services Team is responsible for working with our customers to understand their needs and delivering a complete solution. We will leverage your unique skills to help solve customers’ challenges, such as engineering a system to address a technical hurdle, protecting customer data, or consulting on a wide range security topics. You are empowered to engage and lead across multiple groups and must have the self-sufficiency and focus to work well without constant oversight. This role requires a blend of technical proficiency with Elastic SIEM, cybersecurity principles, and strong analytical capabilities to effectively protect against and respond to cyber threats. The candidate should also possess excellent interpersonal skills to communicate complex security issues to a broad audience effectively.

Requirements

  • 2+ years of cyber experience
  • Deep Knowledge of Elastic SIEM: Proficient in using Elastic SIEM for monitoring, threat detection, and response. Experience with using Kibana, Logstash, Ingest Pipelines, Enterprise Search or Observability preferred.
  • Strong understanding of network protocols, encryption, and vulnerabilities.
  • Ability to analyze complex data from various sources to deduce patterns and detect anomalies.
  • Familiarity with scripting languages like Python or PowerShell to automate tasks and manipulate data.
  • Experience in creating and tuning SIEM rules, signatures, and dashboards.
  • Excellent written and verbal communication skills for reporting and stakeholder engagement.
  • Strong problem-solving skills with the ability to work under pressure in a fast-paced environment.
  • Able and willing to support domestic or international on-site travel with customers or at ECS offices. Any travel will be short in duration and well-planned.
  • Possess and maintain a U.S. Passport.
  • Must have a Secret clearance, at minimum.

Responsibilities

  • Perform analysis using various defense tools, including IDS/IPS, firewalls, and host-based security systems.
  • Utilize Elastic SIEM to correlate events and identify indicators of threats, creating actionable intelligence.
  • Investigate emerging threats and vulnerabilities to enhance incident identification processes.
  • Implement both log-based and endpoint-based detection strategies to identify and mitigate threats from multiple sources.
  • Develop and customize SIEM content such as machine learning rules, signatures, and dashboards according to customer requirements.
  • Correlate data across network, cloud, and endpoints to identify attacks and unauthorized actions.
  • Review and respond to alerts from SIEM and other sensors; document incidents in formal, technical reports.
  • Analyze phishing email submissions to determine threat levels and appropriate responses.
  • Provide effective incident response and mitigation strategies to contain and rectify breaches.
  • Collaborate with threat intelligence and threat-hunting teams to maintain up-to-date knowledge of threat landscapes.
  • Assist in assessing new security tools and analytical techniques for integration into managed security services.
  • Support both large-scale and smaller-scale cyber breach investigations.
  • Effectively communicate cyber events and findings to both internal and external stakeholders.

Stand Out From the Crowd

Upload your resume and get instant feedback on how well it matches this job.

Upload and Match Resume

What This Job Offers

Career Level

Mid Level

Number of Employees

11-50 employees

Job Search Resources

Tools

Career Hubs

Guides

Company

© 2024 Teal Labs, Inc
Privacy PolicyTerms of Service