Senior Security Analyst - SOC Operations

Cyderes (Cyber Defense and Response) is a pure-play, full life-cycle cybersecurity services provider with award-winning managed security services, identity and access management, and professional services designed to manage the cybersecurity risks of enterprise clients.  We specialize in multi-technology, complex environments with the in speed and agility needed to tackle the most advanced cyber threats. We leverage our global scale and decades of experience to accelerate our clients’ cyber outcomes through a full lifecycle of cybersecurity services. We are a global company with operating centers in the United States, Canada, the United Kingdom, and India.
About the Job: The Managed Services Senior Security Analyst is responsible for providing security solutions to clients. The Senior Security Analyst will demonstrate the capacity to consistently meet and exceed client expectations, by representing and reinforcing the Cyderes brand through positive interaction with other teams within the company. Perform deep dive investigations into security threats, understand and implement MITRE mapping to identify customers current security posture.

Responsibilities:

• Provide overall guidance, instructions, and mentorship to other Security Analysts
• Perform triage and security investigation based on advanced analysis tasks across the endpoint, server, and network and provide recommendations.
• Perform remediation actions wherever applicable.
• Coordinate Incident investigations and perform deep dive analysis on detected threats.
• Understand and identify indicators of attack and compromise in alerts, by hunting through data, and from review of investigation notes.
• Have full understanding of the MITRE ATT&CK framework. Mapping custom use cases to tactics and techniques.
• Update documentation and runbooks to avoid repeatable alerts.
• Document, communicate recommendations and guidelines based on results of analysis.
• Analyze, review, and provide raw log data for more insight into escalations through
• SIEM.
• Communicate effectively orally and in writing.
• Maintain current knowledge and understanding of threat landscape.

Requirements:

• 5 or more years of progressing/in-depth IT security experience. Practical experience in a senior role within the last three years and demonstrated ability to carry out the functions of the job.
• Previous Experience with any of the two leading SIEM like Splunk, Sentinel, Chronical etc.
• Previous experience on any of the EDR tools like - Defender, SentinalOne, CrowdStrike etc.
• Advanced knowledge SIEM platform and query language (KQL or SPL.)
• Possess at least one industry certification Sec+, CEH SC200, CC (Cloud Fundamental Security knowledge).
• Prior knowledge of SOAR platform such as Siemplify, Forti soar etc.
• Understanding of Phishing and email header analysis.
• Contributing on whitelisting, Tuning management.
• Experience in SOC and Incident Response activities.
• Expert-level Analysis of security events.
• SIEM content management knowledge is an advantage.
• Basic scripting or development experience will be an added advantage.

Cyderes is an Equal Opportunity Employer (EOE). Qualified applicants are considered for employment without regard to race, religion, color, sex, age, disability, sexual orientation, genetic information, national origin, or veteran status.
Note: This job posting is intended for direct applicants only. We request that outside recruiters do not contact us regarding this position.