Threat Investigation Analyst
About The Position
The Threat Investigation Analyst is a key member of the Threat Operations Team and serves as a first responder to cybersecurity incidents. This role is responsible for triaging, investigating, and responding to security alerts to protect customer environments. Analysts evaluate real-world logs, network traffic, and security artifacts to determine malicious versus benign activity and communicate findings clearly to both technical and non-technical stakeholders. Schedule: Thursday, Friday, Saturday, Sunday | 4x10 (3:00 PM CST - 1:30 AM CST). Training will be Monday through Friday 8:30 AM CST - 5:00 PM CST, until we feel you are ready to be assigned to your dedicated shift. This position can be remote, with occasional onsite support required at our Downers Grove, IL headquarters.
Requirements
- 1+ years of experience in a Security Operations role (SOC, Incident Response, Threat Intel, Malware Analysis, IDS/IPS, etc.) preferred
- Required minimum certifications: CompTIA Security+
- Experience with SIEM platforms and security investigations
- Experience performing daily system monitoring and health checks for various security products
- Confident triaging alerts and reports of incidents
- Familiarity with network, endpoint, and host-based security telemetry
- Understanding of common and emerging attack techniques
- Understanding basic network protocols and traffic flow in an enterprise environment
- Strong attention to detail and documentation accuracy
- The ability to communicate clearly with verbal and written skills
- The candidate must have a car, as this position requires travel between location and the transportation of equipment
- A valid driver’s license and proof of vehicle insurance will be required
- Legally authorized to work in the US without sponsorship
- Must demonstrate a “can-do” attitude
- We focus on candidates that display our “ACE” factor – Attitude, Compassion, and Enthusiasm to deliver quality solutions with exceptional customer service.
Responsibilities
- Triaging security alerts
- Investigating security alerts
- Responding to security alerts
- Evaluating real-world logs
- Evaluating network traffic
- Evaluating security artifacts
- Determining malicious versus benign activity
- Communicating findings to technical stakeholders
- Communicating findings to non-technical stakeholders
Benefits
- Medical
- Dental
- Vision
- 401K
- 529
- Life Insurance
- Income Protection Short and Long-Term Disability
- Medical and Child/Elder Care
- Flexible Spending Account Plans
- Family Planning Benefits
- Financial Education
- Identity Theft Protection and Assistance
- Legal Services
- Employee Assistance Program
- Two weeks’ vacation
- additional paid time-off for Personal and Sick
- certification and hands-on training
- employee discount for product services and entertainment
Stand Out From the Crowd
Upload your resume and get instant feedback on how well it matches this job.
What This Job Offers
Job Type
Full-time
Career Level
Entry Level
Education Level
No Education Listed
Number of Employees
251-500 employees
