Cyber Defense Analyst

Cyber Defense Analyst (L1)

Randstad Digital is seeking a Cyber Defense Analyst (L1) for an exciting opportunity in Greensboro, NC. In this role, you will be responsible for cyber monitoring and incident response activities, including log review, vulnerability management activities, management report scheduling and running, alert analysis, filter modifications and escalation follow up activity status.

Job Duties:

• Complete Cyber Monitoring and Incident Response Operations Playbook/Checklist activities including, but not limited to: log review, vulnerability management activities, management report scheduling and running, alert analysis, filter modifications and escalation follow up activity status
• Monitor CSOC alert queue and investigate detections for suspicious events
• Develop, tune and maintain tools to automate analysis capabilities for network-based, host-based and log-based security event analysis. Create signatures, rulesets, and content analysis definitions from various intelligence sources for a variety of detection capabilities
• Organize and maintain documentation of detection capabilities, alert definition, policy configurations, and tool rulesets
• Maintain adherence to Cybersecurity Operations Center standards, policies and procedures
• Remain up-to-date on the latest security information in order to validate the security analysis and identification capabilities of the security operations technologies
• Participate in efforts to analyze and define security filters and rules for a variety of security parameters

Requirements:

• Bachelor's degree in cybersecurity or a related 4-year degree, or 3-6 years of relevant IT experience, or 2-4 years of IT Security experience
• A good team player with a passion for cyber defense
• Intrusion Detection, Network Traffic Analysis, Log Analysis, Rule/Signature/Content Development, programming or scripting required
• Ability to analyze logs, alerts, network traffic and other data sources to validate security events
• Ability to create signatures and detection content in IDS, SEIM and log analysis platforms
• Ability to consume, comprehend and utilize and create indicators of compromise
• Perform daily analysis of detection reports and alerts
• Maintain tools, scripts and applications for detection and automation capabilities
• Identify opportunities for capability and efficiency improvements
• Exhibit understanding of tools, tactics, and procedures of malicious actors and advanced persistent threats
• Identify and report on detection trends

Cyber Defense

Intrusion Detection

Scripting - Powershell and Python

Equal Opportunity Employer: Race, Color, Religion, Sex, Sexual Orientation, Gender Identity, National Origin, Age, Genetic Information, Disability, Protected Veteran Status, or any other legally protected group status.

At Randstad Digital, we welcome people of all abilities and want to ensure that our hiring and interview process meets the needs of all applicants. If you require a reasonable accommodation to make your application or interview experience a great one, please contact

Pay offered to a successful candidate will be based on several factors including the candidate's education, work experience, work location, specific job duties, certifications, etc. In addition, Randstad Digital offers a comprehensive benefits package, including: medical, prescription, dental, vision, AD&D, and life insurance offerings, short-term disability, and a 401K plan (all benefits are based on eligibility).

This posting is open for thirty (30) days.