Tier 2/3 Cyber Security Analyst / Microsoft Sentinel/Microsoft Defender
Tasks
- Conduct host and email forensic analysis
- Coordinate incident response and reporting
- Deploy and manage Microsoft Defender for Cloud
- Deploy and manage Microsoft Defender for Endpoint
- Deploy and manage Microsoft Defender for Identity
- Deploy and manage Microsoft Defender for Office 365
- Detect and analyze security incidents
- Develop and tune SIEM analytics rules
- Integrate Sentinel with SOAR and automate response
- Map detections to MITRE ATTACK and D3FEND
- Operate Microsoft Sentinel and data connectors
- Perform log and network traffic analysis
- Perform threat hunting and intelligence integration
- Serve as escalation point for complex threats
- Write Kusto Query Language queries
Perks/Benefits
- N/A
Skills/Tech-stack
ASR Rules | Conditional Access | D3FEND | Defender for Cloud | Defender for Endpoint | Defender for Identity | Defender for Office 365 | EDR | Entra ID | Forensic analysis | Identity Management | Identity Protection | IoC | KQL | Kusto Query | Kusto Query Language | Logic Apps | Malware analysis | Microsoft Defender | Microsoft Defender for Cloud | Microsoft Defender for Endpoint | Microsoft Defender for Identity | Microsoft Defender for Office | Microsoft Defender for Office 365 | Microsoft Entra | Microsoft Entra ID | Microsoft Sentinel | Mitre Attack | Network Traffic | Network Traffic Analysis | Office 365 | Power Automate | Privileged Identity | Privileged Identity Management | Query Language | SIEM | SOAR | Threat Intelligence | Threat hunting | Traffic analysis
Education
Roles
Analyst | Cyber Security | Cyber Security Analyst | Security Analyst
Regions
Countries
States
Related jobs
-
Excel | Geopolitical risk | Monte Carlo | Monte Carlo Simulation | Network AnalysisCareer development support | Certification reimbursement | Discretionary time off | Flexible-hybrid work | Health/Vision/Dental benefitsSenior-level Full TimeHuntsville, Alabama, United States10h ago
-
ME00590-Reverse Engineer 4 USD 170K-215KAdvanced persistent threat | Assembly | Computer Networking | Indicator of Compromise | Malware analysisGroup medical plan | Paid Holidays | Paid dental | Paid life insurance | Paid time offSenior-level Full TimeFort Meade, MD20h ago
-
Senior Security Compliance Manager USD 175K-224K800-37 | 800-53 | AI RMF | AWS | Agile project managementSenior-level Full TimeUnited States22h ago
-
Adversary Tactics Techniques Procedures | Adversary tactics | Cyber Security | Cyber Threat | Cyber Threat IntelligenceSenior-level Full TimePennsylvania, USA; United States1d ago
-
Cyber Threat Intelligence (CTI) - Analyst USD 134K-196KAnalyst Notebook | Augury | Cyber Threat | Cyber Threat Intelligence | Elastic401k match | Accident insurance | Bereavement leave | Critical illness insurance | Dental insuranceMid-level Full TimePearl City, HI1d ago
-
Cyber Threat | Cyber threat hunting | Digital forensics | IDS/IPS | Incident Response401k match | Dental insurance | Flexible spending plan | Health insurance | Insurance benefitsMid-level Full TimeCamp Smith, HI1d ago
-
Intern Cyber Security Engineer USD 52K-69K365 Security | Access Control | Access Management | Application Firewall | AuthenticationEntry-level InternshipMcLean, VA, US1d ago
-
Advanced persistent threat | Analytic techniques | Cyber Threat | Cyber Threat Kill Chain | CybersecuritySenior-level Full TimeArlington, VA, United States1d ago
-
Cyber Threat Analyst - GTA USD 112K-179KCyber Kill Chain | Cyber Threat | Cyber Threat Intelligence | Cyber Threat Intelligence Methodologies | Detection SystemsSenior-level Full TimeArlington, VA, United States1d ago
-
Exploitation Analyst (EA), Lead Associate USD 104K-166KComputer Security | Cybersecurity | Data Analysis | Information Assurance | Network AnalysisBonus plan | Employee benefits coverage | Paid time offSenior-level Full TimeFort Meade, MD, United States1d ago
-
Computer Network Defense Analyst (CNDA), Advisor USD 135K-216KCloud Security | Computer forensics | Detection Systems | Encryption technologies | Firewall administrationEmployee Benefits Coverage for Dependents | Paid time offMid-level Full TimeFort Meade, MD, United States1d ago
-
Cybersecurity Analyst USD 61K-102KAccess Management | Amazon Web Services | Attack surface | Attack surface management | Cloud infrastructure401k | Dental insurance | Hybrid work | Medical insurance | PTOMid-level Full TimeDallas TX, United States1d ago
-
Cyber Intrusion Analyst USD 69K-125KCapture analysis | Command Line | Command-line scripting | Countermeasure development | Cyber Kill ChainMid-level Full Time1677 DISA-Pacific Ford Island HI, United …1d ago
-
Cyber Analyst USD 90K-189KCybersecurity | Enterprise networking | Forensic analysis | Forensics | Incident ReconstructionContinuing education | Flexible time off | Healthcare benefits | Learning resources | Retirement benefitsSenior-level Full Time1J5 WASHINGTON DC (BOLLING AFB), United …1d ago
-
Information Technology (IT) Systems Administrator (Systems Application Analyst 3) - 28492 USD 96K-125KACAS | AWS | Access Control | Android | ArubaSenior-level Full TimeMountain View, CA, California, United States1d ago
-
All-source research | Attack Characterization | Autopsy | Chain of Custody | Code AnalysisReferral bonusSenior-level Full TimeArlington, VA2d ago
-
Network Based Systems Analyst III USD 78K-135KArcSight | Event Correlation | Incident Response | Intrusion Detection | Intrusion Detection SystemSenior-level Full TimeArlington, VA2d ago
-
CPT Operator USD 81K-128KArkime | Bash | Command-line Interface | Cyber Kill Chain | Elastic StackOnsite position | TS/SCI clearanceMid-level Full TimeSan Antonio (JBSA), TX, United States2d ago
-
Security Engineer - Penetration Testing- Cybersecurity USD 150K-225K.NET | APT threats | Access Control | Application Testing | Attack surfaceSenior-level Full TimeIssaquah, WA, US3d ago
-
Cyber Security Officer, Junior USD 66K-122KCertification and accreditation | Change Management | Computer Network Defense | Computer Networking | Computer network401k plan | AD and D insurance | Dental insurance | Holiday package | Life insuranceEntry-level Full TimeReston, VA3d ago
-
Principal Threat Intelligence Analyst USD 200K-225KAI workflows | C plus plus | C# | Detection engineering | Digital forensics401k match | Coaching platform | Digital reimbursement | Disability insurance | Education allowanceSenior-level Full TimeUnited States of America R3d ago
-
All Source Threat Intelligence Analyst (IA 2) USD 80K-128KData Validation | Information Sharing | Intelligence Analysis | Oral Communication | Quality Assurance24 7 365 shift scheduleEntry-level Full TimeVienna, VA, United States3d ago
-
Cyber Security Coordinator USD 39K-76KAccess Management | Access Risk Monitoring | Brand Monitoring | Cloud Security | Cloud Security Posture401k company match | Career advancement | Company events | Dental insurance | Gym membership stipendEntry-level Full TimeColumbia, MO (Headquarters)4d ago
-
Manager, Cyber Security USD 114K-170KBusiness Continuity | Cause analysis | Cybersecurity | Data Loss Prevention | Data loss401k | Career growth | Dental insurance | Education reimbursement | Flexible spending accountMid-level Full TimeUnited States (Remote) R4d ago
-
Cyber Security Operations Center Analyst USD 97K-161KArcSight | Brute Force | Brute Force Detection | Event analysis | FirewallRotating shiftsMid-level Full TimeUSA-WV-Fairmont4d ago