Security Analyst II

Cyderes (Cyber Defense and Response) is a pure-play, full life-cycle cybersecurity services provider with award-winning managed security services, identity and access management, and professional services designed to manage the cybersecurity risks of enterprise clients.  We specialize in multi-technology, complex environments with the in speed and agility needed to tackle the most advanced cyber threats. We leverage our global scale and decades of experience to accelerate our clients’ cyber outcomes through a full lifecycle of cybersecurity services. We are a global company with operating centers in the United States, Canada, the United Kingdom, and India.
About the Job: The Managed Services Security Analyst II is responsible for providing security solutions to clients. The Security Analyst II will demonstrate the capacity to consistently meet and exceed client expectations representing and reinforcing the Cyderes brand through positive interaction with other teams within the company. Perform deep dive investigations into security threats, understand and implement MITRE mapping to identify customers current security posture.

Responsibilities:

• Perform initial triage and advanced analysis tasks across endpoint, SIEM, server, and network infrastructure.
• Perform proactive security investigations and searches on client environment to detect malicious activities.
• Perform Incident investigations and deep dive analysis on detected threats.
• Understand and identify indicators of attack and compromise in alerts, by hunting through data, and by reviewing past investigations.
• Have full understanding of the MITRE ATT&CK framework. Mapping clients’ use cases to tactics and techniques.
• Triage, review, and provide log data for more insight and recommendations to escalate through SIEM.
• Effective oral communications and writing/drafting skills.
• Maintain up to date knowledge and understanding of the current threat landscape.

Requirements:

• 3 or more years of progressing/in-depth IT security experience.
• Demonstrate experience in using Endpoint Detection and Response software (Sentinel1, Crowdstrike, Defender ETC.)
• Advanced knowledge of at least one leading SIEM platform (Sentinel, Splunk, Elastic, IBM Qradar, Chronicle etc.)
• Experience in SOC and Incident Response activities.
• Understanding of SIEM correlation, use cases and events.
• Should hold at least one industry certification Sec+, CEH, SC 200, Any Cloud Certification and Cloud Security Fundamentals.
• Basic scripting or development experience would be an added advantage

Cyderes is an Equal Opportunity Employer (EOE). Qualified applicants are considered for employment without regard to race, religion, color, sex, age, disability, sexual orientation, genetic information, national origin, or veteran status.
Note: This job posting is intended for direct applicants only. We request that outside recruiters do not contact us regarding this position.