Cyber Network Defense Analyst (CNDA) III – Cloud Forensics
Tasks
- Analyze forensic artifacts
- Conduct forensic acquisition
- Correlate cloud telemetry and network evidence
- Develop analytical playbooks
- Develop detection logic
- Improve detection and response posture
- Investigate cloud control plane intrusions
- Investigate identity and credential abuse
- Perform threat hunting
- Produce technical reports
- Reconstruct attacker timelines
- Support forensics workflow improvements
- Support incident response procedure improvements
- Triage alerts and assess risk
Perks/Benefits
Skills/Tech-stack
AWS CloudTrail | AWS GuardDuty | AWS IAM | Activity logs | Azure Activity Logs | Bash | Cloud Forensics | Cloud telemetry | Credential abuse | Digital forensics | Docker | Entra ID | Flow Logs | GCP Chronicle | GCP Logs | IaaS | Identity Security | Incident Response | Indicator of Compromise | JavaScript | Kubernetes | M365 | MITRE ATTACK for Cloud | Microsoft Defender | Microsoft Entra | Microsoft Entra ID | Microsoft Sentinel | Mitre Attack | PaaS | Powershell | Python | SaaS | Terraform | VPC Flow Logs | VPC flow
Education
Bachelor of Engineering | Bachelor of Science | High School Diploma
Related jobs
-
Tier III Analyst/Threat Hunter USD 110K-166KCause analysis | Detection and Response | Detection engineering | Digital forensics | Endpoint Detection and ResponseComprehensive health coverage | Federal holidays off | Flexible PTO | Professional development support | Remote workSenior-level Full TimeWashington, D.C. Metro - hybrid/remote R11h ago
-
Associate, Vulnerability Assessment USD 53K-92KAWS | Bash | Burp Suite | CCSK | CIS BenchmarkCertification and training reimbursement | Comprehensive insurance options | Digital mental health and wellbeing support membership | Flexible time off | Flexible work modelMid-level Full TimeUnited States14h ago
-
Information Security Analyst USD 95K-130KAccess Control | Authentication | Bash | Certificate management | Encryption401k | Employee discounts | Health, dental, vision coverage | Life insurance | Paid HolidaysMid-level Full TimeHawthorne, CA14h ago
-
Cybersecurity Analyst (Intrusion Analyst) USD 100K-200KC# | C++ | Computer Network Defense | Computer network | Incident Response401k company match | Dental insurance | Employer Paid Long-term Disability | Employer Paid Short-term Disability | Employer-paid life insuranceSenior-level Full TimeSan Antonio, TX, US16h ago
-
Cloud Security/Penetration Test Engineer USD 130K-185KASVS | Amazon Web Services | Application Firewalls | Bash | CMMC401k plan | Appspace Quiet Fridays | Disability coverage | Employer-paid life insurance | Flexible work schedulesSenior-level Full TimeDallas, Texas, United States Remote R16h ago
-
Security Operations Analyst USD 70K-106KContinuous Monitoring | Controls evaluation | Detection engineering | Incident Response | Log AnalysisEntry-level Full TimeWashington DC16h ago
-
Senior Product Security Engineer USD 153K-189KAWS | Ansible | CNAPP | Cloud Security | Cloud Security Posture401k match | Company holidays | Flexible hours | Hybrid work model | Paid parental leaveSenior-level Full TimeBoston, MA, United States17h ago
-
API Security | AWS | Access Management | Azure | Bicep401k match | Commuter benefits | Flexible spending account | Health savings account | Life and ADandD insuranceMid-level Full TimeSomerset, New Jersey, United States18h ago
-
IT Cybersecurity Analyst USD 75K-95KCause analysis | Cybersecurity | Endpoint protection | Incident Response | Information security401k matching | Dental insurance | Life insurance | Long-term disability | Medical insuranceMid-level Full TimeDallas, Texas, United States19h ago
-
Executive-level Full TimeBellevue, WA, United States20h ago
-
Microsoft Teams | Power BI | Python | SQL | SharePointHelp desk support | User trainingEntry-level ContractLansing, United States22h ago
-
Alerting | Automation | Detection engineering | Incident Response | Log Analysis100% onsite | Public trust clearance requiredSenior-level ContractWashington, United States23h ago
-
Cloud Engineer I USD 90K-120KBest practices | Business Continuity | Citrix | Desktop Services | Disaster RecoverySenior-level Full TimeAtlanta, Georgia, United States1d ago
-
Cloud Engineer USD 116K-206KAWS | AWS Cloud | AWS Cloud Development Kit | AWS Lambda | AWS cloud development401k matching | Dental insurance | Dependent Care Flexible Spending Account | Health insurance | Health savings accountMid-level Full TimeChantilly, US-VA, US1d ago
-
Cyber Data Scientist USD 132K-219KAWS Elastic MapReduce | Amazon SageMaker | Amazon Web Services | Artificial Intelligence | Assessment and Authorization401k match | Dental insurance | Disability insurance | Flexible spending account | Health savings accountSenior-level Full TimeChantilly, US-VA, US1d ago
-
AWS | AWS CloudTrail | AWS GuardDuty | Activity logs | Artifact analysisActive TS SCI clearance support | Onsite as required | Remote workMid-level Full TimeArlington, VA, USA, 222031d ago
-
Sr. Cloud Security Engineer (NIN-AE4-18.062325) USD 112K-193KAWS Security | Amazon Web Services | Data Classification | Management Framework | Node.jsSenior-level Full TimeLinthicum Heights, Maryland1d ago
-
Analyst, OT Cybersecurity, 1 USD 67K-109KAccess Controls | Active Directory | Change Management | Cyber Incident Forensics | Cyber incidentDiscount programs | Flexible spending accounts | Paid family leave | Paid parental leaveSenior-level Full TimeMiddletown, IA, US, 526381d ago
-
Cybersecurity & IoT Research Analyst USD 69K-118K800-53 | ATO | AWS | Access Control | C++Hybrid work | Secret clearance supportEntry-level Full TimeTysons, VA, United States1d ago
-
IT Security Analyst, Tier III USD 112K-155KCapture analysis | Cybersecurity | DNS analysis | Data correlation | Disk image analysisSenior-level Full TimeWilmington, DE, United States1d ago
-
Cyber Data Analyst USD 86K-138KAnomaly Detection | Automation | Dashboard Development | Data Analysis | Data CleansingMid-level Full TimeArlington, VA, United States1d ago
-
Senior-level Full TimeUnited States1d ago
-
Senior Cloud & Security Engineer USD 119K-258KAzure | Azure Landing Zones | Azure Logic | Azure Logic Apps | Conditional AccessSenior-level Full TimeSt. Louis, MO, US1d ago
-
Senior-level Full TimeChicago, IL, United States1d ago
-
Cybersecurity Metrics and Reporting Lead USD 105K-161KAccess Management | Data Governance | Data Modeling | Data integration | EDRDental insurance | Disability insurance | Employee assistance program | Flexible spending account | Flexible vacation and sick leaveSenior-level Full TimeTEX01 - Houston, Texas (TEX01), United …1d ago