Cybersecurity Analyst
Arlington, VA, US
Cambridge Associates
We build custom investment portfolios to meet each client’s unique needs and goals, all in pursuit of outperformance.CAREERS THAT CHANGE THE WORLD
OUR CULTURE
Cambridge Associates believes culture is central to your success and ours.
We believe in a vibrant, values-driven culture that is supportive, inclusive, and diverse. Here, we celebrate the individual while we support global connectivity. At CA, collaboration wins, kindness matters, and your success is our priority.
o We foster an inclusive and diverse environment that enables all individuals to engage and bring their full selves to work.
OUR CLIENTS
Cambridge Associates believes our clients come first.
Our clients are the most compelling endowments, foundations, pensions, private clients and institutional investors around the globe. We lock arms with them to meet and exceed their investment objectives, so they can change the world.
OUR PEOPLE
Cambridge Associates believes we do our best when you do your best.
At CA, we are only as successful as you are. We actively recruit and invest in the most dynamic and diverse talent and then empower you to succeed. By leveraging your unique skills, developing your individual career goals, and building a collaborative global community of connected, diverse individuals, we build a community that is stronger together.
But enough about us. Tell us about YOU
o Are you a bold individual seeking an opportunity to contribute to a value-based, collaborative environment in some of the most exciting cities around the globe?
o Are you eager to work for an organization committed to diversity, inclusion, sustainability, and Corporate Social Responsibility?
o Do you strive to work in an environment that encourages innovation and teamwork?
o Are you a thought leader who cares about making a difference in the world while contributing to an amazing culture?
o Do you value a challenging professional opportunity where you can leverage your skills, gain a valuable foundational in finance and investment, and build a long-term career development plan?
o Are you seeking a competitive salary a robust and comprehensive benefits program, and a variety of attractive benefits and perks?
THE OPPORTUNITY
This position is on the Incident Response (IR) Team focusing on intrusion detection and incident response. You will be responsible for monitoring, analyzing, and responding to security alerts, threats, and incidents. You will work closely with other members of the IR Team and other IT teams to enhance the overall security posture of Cambridge networks and systems. This position requires you to be self-driven, motivated, and able to work independently while also being able to work well in a team environment. Possessing great communication skills and being a team player is a must. Candidate will be required to be on-call one week per month.
RESPONSIBILITIES
Validates, enforces, and operates information system security controls and countermeasures. Analyzes and recommends security controls and procedures in acquisition, development, and change management lifecycle of information systems, and monitors for compliance.
· Work as a primary incident response analyst, responding to alarms, creating, and closing cases in our SIEM.
· Perform custom detections to identify currently exploited vulnerabilities, 0-day exploits and other critical security threats.
· Keep abreast on new and existing cyber threats to enhance detection & response capabilities by creating custom indicators across all detection and monitoring technologies.
· Identify, report, and participate in activities during information security incidents as part of an Incident Response Team; review and respond to security alerts to investigate malicious activity.
· Develop, refine, and test custom incident response playbooks.
· Included in the team on-call after hours incident escalation.
· This position is a hybrid work position. Some amount of regular in-person work will be required at our Arlington, VA office.
PREFERRED QUALIFICATIONS
Knowledge/Skills/Abilities:
· Ability to work effectively in a hybrid/remote collaborative team environment.
· Knowledge of Cybersecurity concepts including practical applications of cryptography, authentication and authorization, access control, security architectures, threat modeling, vulnerabilities, and software security.
· Experience working in a SOC or CSIRT as an intrusion detection or incident response analyst.
· Experience using the MITRE ATT&CK Framework and developing solutions and monitoring protocols to identify and respond to known adversary TTPs.
· Experience with the analytical process of reviewing logs, event correlation and workflows.
· Strong understanding of computer networking such as TCP/UDP and ports/protocols.
· Strong understanding of security technologies such as IDS/IPS, firewalls, SIEM/EDR.
· Experience with SIEM technologies:
· LogRhythm, Splunk, QRadar, Microsoft Sentinel, ArcSight
· Experience with EDR technologies:
· Microsoft Defender, Carbon Black, CrowdStrike, SentinelOne
· Experience or knowledge of Antivirus and NDR tool.
· Experience working with Threat Intelligence tools to monitor and respond to the ever-evolving threat landscape.
· Ability to read, understand and explain security telemetry data:
· Packet capture data (pcap)
· Logs (Firewall, Proxy, Endpoint, etc.)
· A bachelor’s degree in computer science, information technology or related field
· 1-2 years of experience working in a SOC/CSIRT or other cybersecurity related position
· Candidates with one or more of these certifications are preferred: Security +, GSEC, GCIH, GCIA, GCFA, CCNA
· Must be self-driven and take initiative
· Must possess strong analytical and problem-solving skills
· Must work well individually and with others, as part of a team
· Must possess excellent verbal and written communication skills
Want to learn more?
Click HERE to learn more about how Cambridge Associates lives our firm values every day. (https://www.cambridgeassociates.com/about-us/firm-values/)
Click HERE to learn more about Cambridge Associates invests in diversity and inclusion. (https://www.cambridgeassociates.com/about-us/diversity-inclusion/)
Click HERE to learn more about our commitment to Corporate Social Responsibility. (https://www.cambridgeassociates.com/about-us/corporate-social-responsibility/)
EQUAL OPPORTUNITY EMPLOYMENT
The firm is committed to the concept and practice of equal employment opportunity and will not discriminate against any employee or applicant on the basis of race, color, religion, age, sex, national origin, sexual orientation, gender identity, disability, or veteran status. It is expected that all employees will follow a similar policy toward their co-workers.
* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰
Tags: Antivirus ArcSight Carbon Black Compliance Computer Science CrowdStrike Cryptography CSIRT EDR Exploits Finance Firewalls GCFA GCIA GCIH GSEC IDS Incident response Intrusion detection IPS LogRhythm MITRE ATT&CK Monitoring PCAP QRadar Sentinel SIEM SOC Splunk Threat intelligence TTPs Vulnerabilities Zero-day
Perks/benefits: Career development Competitive pay Team events
More jobs like this
Explore more career opportunities
Find even more open roles below ordered by popularity of job title or skills/products/technologies used.