IT Security Analyst

Location – REMOTE [within a 50-mile radius of Herndon, VA]

Job Summary: The main function of an IT Security Analyst is to plan, coordinate, and implement security measures for information systems to regulate access to computer data files and prevent unauthorized modification, destruction, or disclosure of information.

Job Description: A typical IT Security Analyst is responsible for planning, coordinating, and implementing security measures to safeguard the computer database.

Must Haves

• 5+ years in general technical cybersecurity experience.
• 3+ years’ experience in detection engineering, threat hunting, or incident response.
• Experience in operationalizing cyber threat intelligence into high-fidelity detection logic.
• Experience in systematically developing detection logic and adversarial TTP testing against said logic following formalized detection engineering lifecycle.
• Highly proficient in analyzing logs from various sources, such as endpoints, applications, network appliances, and cloud environments.
• Strong technical understanding of cybersecurity fundamentals at the network, protocol, and host levels.
• Experience with MITRE ATT&CK and/or D3FEND frameworks.
• Strong experience with SIEM platforms.
• Ability to proactively and systematically hunt for threats using investigative tools, techniques, and user behavior analysis.
• Offensive security experience – conducting red team operations and/or penetration tests.
• DevOps experience and/or building/maintaining cloud environments using infrastructure as code.
• Strong ability to translate cyber and technical issues and topics into risk-informed business language.
  
  

Skills: infrastructure as code,offensive security,it security,adversarial ttp testing,incident response,red team operations,cloud environments,user behavior analysis,mitre att&ck,host-level security,detection engineering,devops,protocol fundamentals,siem platforms,network fundamentals,threat hunting,security,cyber threat intelligence,investigative tools,detection logic development,cybersecurity,log analysis,penetration testing,d3fend