Cyber Security Analyst

Overview

$DOE
Accepts corp to corp applications
Contract - W2
Contract - Independent
Contract - Long term

Skills

Splunk
Palo Alto

Job Details

Cyber Security Analyst
Location: Remote
Duration: 12+ Months
Job Type: C2C\W2

Skills requirement:

SOAR/Case Management: Palo Alto

XSOAR SIEM: Splunk

EDR: Crowdstrike/

XDR - Palo Alto

Palo Alto Global Protect: Always on VPN

Palo Alto Firewalls

M365/O365: Cloud app security/Entra security

Phishing: O365 native/Checkpoint Harmony (Avanan)

DLP: native o365 IRM, Imperva, Protegrity

MDR: Expel.Expel takes heavy load in terms of tools

Google Cloud Platform/AWS skills

Tickets are in XSOAR

Ability to handle the tickets independently. Handoff process in place.

Experience with common security technologies (XDR, IDS, SIEM, Firewall, etc.) and Cloud (Google Cloud Platform, Azure, AWS, Alibaba).

Solid practical knowledge of ICT cybersecurity in network technologies and Windows/Linux.

Brief Description:

The Security Operations team is looking for a Cyber Security Analyst II with a strong passion for information security, an analytical mindset and a burning desire to learn. We strongly value creative, out-of-the-box thinking and problem solving and the ability to navigate a complex corporate environment. This individual will participate in security monitoring, active investigations, and perform incident response activities in addition to forensics on IT systems. We value strong technical expertise combined with a relentlessly curious nature, to investigate and analyze large sets of data.

Essential Key Responsibilities/Job Summary

Brief narrative that captures the essence of the job.

Incident Response activities: drive security operations analyst's activities, communicate with Security and Technology management, and document investigation activities. 40%

Regularly review new attack vectors for impact on the organization's IT environment and develop changes necessary to ensure effective visibility and detection. 20%

Actively participate in the work of the cross functional security team to implement the activities for the maturity of capabilities in the context of security operations 20%

Identify and work with other teams to develop solution for automated threat detection, behavioral analytics and other automation for managing cloud security operations 10%

Provide consulting and support during deployment of new cloud security tools and/or processes to monitor and alert on Cloud IaaS/PaaS/SaaS, container and DevSecOps processes to ensure appropriate visibility around cloud compute resources. 10%

Education/Experience and Competencies

Minimum 8 years of information security experience specifically incident response, technical investigations including cloud infrastructure

Working knowledge of security principles

Experience with common security technologies (XDR, IDS, SIEM, Firewall, etc.) and Cloud (Google Cloud Platform, Azure, AWS, Alibaba)

Solid practical knowledge of ICT cybersecurity in network technologies and Windows/Linux.

Strong written and oral communication skills with the ability to explain technical ideas to non-technical individuals at any level

Employers have access to artificial intelligence language tools (“AI”) that help generate and enhance job descriptions and AI may have been used to create this description. The position description has been reviewed for accuracy and Dice believes it to correctly reflect the job opportunity.