Threat Analyst
Any location, Canada
Coalition
Coalition combines comprehensive cyber insurance coverage and security services to help businesses prevent digital risk before it strikes.About us
Coalition is the world's first Active Insurance provider designed to help prevent digital risk before it strikes. Founded in 2017, Coalition combines broad insurance coverage with a digital risk assessment and continuous security monitoring to help organizations protect themselves in today’s hyper-connected world.
Opportunities to make an impact with bold thinking are real - and happening daily.
About the role
We are looking for a Threat Analyst to support and expand Coalition’s Managed Detection and Response (MDR) security program. This role focuses on threat detection, analysis, and response within platforms like Microsoft Defender, SentinelOne, and CrowdStrike Falcon.
As part of the MDR team, you will play a crucial role in protecting our policyholders/enhancing Coalition’s cybersecurity capabilities. You will work closely with a collaborative team of analysts, engineers, and security professionals to deliver cutting-edge detection and response solutions. This role provides opportunities for growth, exposure to advanced threat analysis techniques, and hands-on experience with leading security tools.
The Threat Analyst role reports to the MDR Team Lead and partners with the IT and Security Engineering teams.
This position is remote and based in the western United States/Canada.
Responsibilities
- Monitor and analyze security alerts from EDR platforms (Microsoft Defender, SentinelOne, CrowdStrike Falcon).
- Investigate and respond to incidents, including identifying Indicators of Compromise (IOCs) and Indicators of Attack (IOAs).
- Perform initial forensic analysis on logs, endpoints, and network data to assess potential threats.
- Collaborate with senior analysts on the investigation and resolution of advanced threats.
- Develop clear and concise incident reports for technical teams and business stakeholders.
- Assist in maintaining and fine-tuning detection rules and security monitoring configurations.
- Stay updated on emerging threats, vulnerabilities, and attack techniques.
- Contribute to team documentation, playbooks, and processes to enhance operational efficiency.
Skills and Qualifications
- 2-4 years of experience in a cybersecurity operations or threat analysis role.
- Hands-on experience with EDR platforms such as Microsoft Defender, SentinelOne, or CrowdStrike Falcon.
- Familiarity with SIEM platforms (e.g., Microsoft Sentinel, Splunk) for log analysis and threat detection.
- Basic understanding of incident response processes, including containment, eradication, and recovery.
- Knowledge of malware analysis, network protocols, and system log analysis.
- Strong analytical skills with attention to detail in identifying patterns and anomalies.
- Ability to communicate effectively with technical and non-technical audiences.
Preferred Certifications
- CompTIA Security+
- GIAC Certified Incident Handler (GCIH)
- Certified Ethical Hacker (CEH)
- Microsoft Certified: Security, Compliance, and Identity Fundamentals
Bonus Skills
- Experience working in Managed Detection and Response (MDR) environments.
- Familiarity with scripting languages like Python or PowerShell to enhance investigative capabilities.
- Exposure to network traffic and protocol analysis tools like Wireshark.
- Strong organizational skills and the ability to manage multiple investigations simultaneously.
Perks
- 100% medical, dental, and vision coverage
- Flexible PTO
- Annual home office stipend and WeWork access
- Mental & physical health wellness programs like Headspace, Lumino, and more!
- Competitive compensation and opportunity for advancement
Why Coalition?
We’re a remote-first, mission-driven team committed to building a more inclusive culture with people of all different backgrounds. We trust our team members to take responsibility, share ownership, and put in the work to help us in our pursuit to solve digital risk.
Coalition’s exceptional growth stems from its ability to address real-world problems for organizations of all sizes and remain true to our founding values of character, humility, responsibility, purpose, authenticity, and inclusion.
We’re always looking for collaborative, inquisitive individuals to join #OurCoalition.
Privacy Notice
Coalition is committed to protecting your privacy and handling your personal information responsibly. We collect, use, and store personal information as necessary for the recruitment process and in compliance with applicable privacy laws and regulations in all regions where we operate. We want you to understand what personal information we collect, how we use it, and your rights regarding access, correction, and deletion of your data where applicable. Information submitted, collected, and processed as part of your application is subject to Coalition's Privacy Policy. For further details, please review our full Privacy Policy or contact us with any questions regarding how your information is handled.
Anti-Discrimination Notice
Coalition is proud to be an Equal Opportunity employer. Our policy is to provide equal employment opportunities to all individuals, without discrimination or harassment on the basis of any characteristic protected by applicable laws in each country where we operate. This commitment includes, but is not limited to, ensuring equal treatment in recruitment, selection, training, promotion, transfer, compensation, and all other aspects of employment. Coalition does not tolerate discrimination or harassment of any kind, and we are dedicated to fostering an inclusive and supportive workplace.
Accommodations
Coalition is committed to providing reasonable accommodations to qualified individuals with disabilities, including applicants and employees, in accordance with applicable laws and regulations in each country where we operate. Our policy is to support equal opportunity in the hiring process by considering qualified applicants regardless of disability or other protected characteristics, unless providing accommodation would impose an undue hardship or disproportionate burden. If you require accommodation to complete an application, interview, pre-employment testing, or participate in the selection process, please contact us at candidateaccommodations@coalitioninc.com. We also consider all qualified applicants, including those with criminal histories, in line with applicable laws and regulations in each jurisdiction.
To all recruitment agencies: Coalition does not accept unsolicited agency resumes. Do not forward resumes to our email alias, employees, or other physical or virtual organization locations. Coalition is not responsible for any fees related to unsolicited resumes.
* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰
Tags: CEH Compliance CompTIA CrowdStrike EDR GCIH GIAC Incident response Log analysis Malware Monitoring PowerShell Privacy Python Risk assessment Scripting Sentinel SIEM Splunk Threat detection Vulnerabilities
Perks/benefits: Career development Competitive pay Flex hours Flex vacation Health care Home office stipend Insurance Salary bonus Wellness
More jobs like this
Explore more career opportunities
Find even more open roles below ordered by popularity of job title or skills/products/technologies used.