Cyber Security Analyst

Phoenix, AZ, USA (Remote)

Job Type

Security

Role Summary:

As a member of the Service Delivery Team, the Cyber Security Analyst is well-versed in hunting, triaging, analyzing, and investigating potential security incidents and threats across our diverse client base. The Cyber Security Analyst works closely with the Team Leader and with other less experienced analysts to investigate complex or advanced incidents proactively and identify threats, vulnerabilities, and exploits (threat analysis, threat hunting, intrusion analysis).

Essential Duties and Responsibilities:

  • Support complex security incidents and investigations, conducting host forensics, network forensics, log analysis, and malware triage in support of incident response investigations

  • Utilize our client’s and 3rd-party endpoint detection and response technologies to conduct large-scale investigations and examine endpoint and network-based sources of evidence

  • Recognize and codify attacker TTPs (tools, tactics, and procedures) and IOCs (indicators of compromise) for application to concurrent or future investigations

  • Build scripts, queries or methodologies to facilitate incident investigation processes

  • Develop and present readable yet comprehensive and accurate reports and presentations for both technical and executive audiences

  • Work with clients’ security and IT operations teams to implement remediation plans in response to incidents.

Qualifications:

  • Bachelor’s Degree (or equivalent experience) with 3 or more years technical experience

  • Experience with at least three of the following:Windows disk and memory forensics;

  • Network security monitoring, network traffic analysis, and log analysis;

  • OSX or Linux disk and memory forensics;

  • Static and dynamic malware analysis;

  • Thorough understanding of enterprise security controls in Active Directory/Windows environments;

  • Cloud (AWS, Azure, M365) security controls, logs, tools and forensics; or

  • Experience building scripts, tools, or methodologies to enhance investigation processes

  • Additional Qualifications:Effectively solving problems, communicating investigative findings and strategies to technical staff, executive leadership, legal counsel, and internal and external clients;

  • Effectively develop documentation and explain technical details in a concise, understandable manner;

  • Strong time management skills to balance time among multiple tasks, and lead junior staff when required; and

  • Must be able to work in the US without sponsorship


#LI-ML1