Cyber Defense Analyst

Tasks

• Analyze authentication patterns and privilege escalation
• Assist with incident containment and response coordination
• Conduct post-incident analysis and lessons learned
• Configure SIEM and endpoint security tools
• Configure security controls in cloud environments
• Correlate security events across endpoints networks identity and cloud
• Document incidents investigations and configuration changes
• Ensure cloud log collection into security monitoring platforms
• Fine-tune detection rules
• Maintain SOC playbooks and improve processes
• Monitor SIEM and endpoint security tools
• Monitor identity protection and access monitoring tools
• Review logs and network activity for suspicious behavior
• Support MFA and conditional access enforcement
• Support security infrastructure and network control configuration
• Triage and escalate security alerts
• Validate cloud resource compliance with baselines
• Validate endpoint compliance and agent health

Perks/Benefits

• N/A

Skills/Tech-stack

Cortex XDR | Defender for Endpoint | EDR | Entra ID | Fortinet | GCP | Google SecOps | IAM | Incident Response | KQL | ManageEngine | Microsoft Azure | Microsoft Defender | Microsoft Defender for Endpoint | Microsoft Entra | Microsoft Entra ID | Microsoft Security | Microsoft Sentinel | Mitre Attack | Palo Alto | Palo Alto Networks | Powershell | Python | SIEM | SentinelOne | Stellar Cyber | Threat detection | XDR