Cyber Security Analyst

Must be a US Citizen and living in the USA. No C2C, no third party.

The person will monitor computer systems to spot suspicious activity, like hacking attempts, malware, or data theft. When something looks wrong, they investigate the alert, figure out how serious it is, and decide what steps to take to fix it.

They use a lot of security tools (firewalls, antivirus, monitoring systems, etc.) to detect and stop threats. They write and update security rules and processes so the organization is better protected in the future. If the issue is too complex, they help escalate it to the right teams and recommend solutions.

This job is watching for hackers or viruses trying to break in, stop them, and then make the computer systems stronger so it’s harder for them to get in next time.

The Global Cyber Unified Threat Detection Team is seeking a Security Analyst. The ideal candidate is an experienced professional responsible for analysis, response, and triage of security alerts/events, determining which steps to take to mitigate the threat. Additionally, you will be responsible for working in a fast-paced environment utilizing a set of security-related tools (e.g. – WAF, SIEM, UBA, SOAR, AV, firewalls, etc.) to analyze security events or incidents to determine the proper approach for their investigation and remediation, develop new team processes, and work with internal/external teams on security issues. The Analyst 2 will provide escalation assistance to resolve moderately complex issues, recommend potential solutions to issues and follow established escalation procedures.

Required:

• 3+ years of security-related experience
• Subject matter expert in multiple areas of responsibility, including monitoring
• Strong knowledge of Network Protocols, Packet Captures, Security Controls and Concepts
• Respond to security incidents regarding malicious attacks, anomalies detected, malware infections, APT activity, unauthorized access, data extraction, etc.
• Knowledge of Scripting, SIEM, standard ticketing systems, Open-Source Security Tools, Web Application Firewalls, PKI, EDR, vulnerability scanning
• Proficient in analyzing security events; coordinating response to incidents; driving investigations; providing concise updates and communications to management; creating documentation to increase efficiency of all levels of support in proper response processes; maintaining strict security standards
• Displayed team-centric and leadership skills, including leading and facilitating meetings (in-person and/or virtual)
• Proven track record of developing new processes, and experience with task automation and process improvements
• Strong documentation, analytical and reporting skills – ability to present to all levels of staff and leadership
• Must have a strong solution orientation

Preferred:

• Bachelor’s degree in computer science, Computer Information Systems, Management Information Systems, or related field preferred

• Security-related Certifications (e.g. – CYSA+, Security +, CEH, GIAC-certs, security tool certs)

• Engineering and project management experience

• Previous work within the Microsoft Security ecosystem