Cybersecurity Analsyt

What you'll do

• Builds and supports the underlying technologies that support the Cybersecurity Incident Response (CIR) groups as well as produces architecture, enforces process governance, and guides our regulatory compliance. Technologies include Security Analytical platforms, SOAR, SIEM, EDR, and other detection and incident response technologies.
• Manages or assists in the management of the CIR event and information platform
• Develops playbook and process automation utilizing the SOAR technologies
• Assists external teams in the proper configuration of security infrastructure that CIR relies on (IDS/IPS, Phish technologies, Firewalls, etc.)
• Aids application teams seeking to consume threat intel into the appropriate tools and services
• Tuning of alerts generated from all Cybersecurity tooling
• Supports and maintains the endpoint detection and response tooling
• Ensures appropriate configuration and rollout of the File Integrity Monitoring solution
• Aids external teams in ingestion of asset data into CIR systems
• Available if needed during an immediate incident to manage tools (24/7)
• Maintains and monitors platforms to ensure 24/7 readiness and operability of CIRE services
• Presents technical documentation to enterprise architecture and standardization boards
• Creates processes that allow non-security minded teams the ability to achieve regulatory compliance
• Consistently work with CIR and Application team in an iterative fashion to ensure that all security logs are monitored, complete, and accounted for

EEO: Mindlance is an Equal Opportunity Employer and does not discriminate in employment on the basis of Minority/Gender/Disability/Religion/LGBTQI/Age/Veterans.