Cyber Defense Analyst

Tasks

• Analyze authentication patterns and abnormal access
• Assist enforcing MFA and conditional access
• Configure and troubleshoot endpoint protection
• Configure security infrastructure and controls
• Correlate security events across endpoints networks identity and cloud
• Document incidents investigations and configuration changes
• Fine-tune detection rules
• Maintain SOC playbooks and improve processes
• Monitor SIEM and endpoint security tools
• Monitor cloud security controls and log collection
• Perform post-incident analysis and lessons learned
• Review logs and network activity to detect threats
• Support identity protection and access monitoring
• Support incident containment and response actions
• Triage and escalate security alerts
• Validate endpoint compliance and agent health

Perks/Benefits

• N/A

Skills/Tech-stack

Azure | Conditional Access | EDR | Entra ID | Event Correlation | Fortinet | GCP | IAM | IAM concepts | Incident Response | KQL | Log Analysis | MFA | MITRE ATT&CK | Microsoft Defender | Microsoft Entra | Microsoft Entra ID | Microsoft Sentinel | Palo Alto | Palo Alto Networks | Powershell | Python | SIEM | Threat detection | XDR