CIRT Tier 2 Analyst
Tasks
- Analyze firewall and intrusion detection logs
- Analyze host logs and EDR alerts
- Analyze malicious scripts and code
- Analyze network traffic anomalies
- Classify and triage alerts
- Collaborate with internal and external CIRTs
- Contain and remediate suspicious activity
- Coordinate incident reporting to CISA
- Create tickets and initiate workflows
- Detect cyber security events and incidents
- Monitor and respond using SOAR platform
- Perform email forensic analysis
- Perform host forensic analysis
- Perform incident response lifecycle analysis
- Perform malware analysis to generate IOCs
- Submit alert tuning requests
Perks/Benefits
Skills/Tech-stack
Automation Response | Bash | Cloud Security | Cloud security monitoring | Cyber Threat | Cyber Threat Intelligence | Detection and Response | Digital forensics | Dynamic analysis | EDR | Elastic | Endpoint Detection and Response | Endpoint Forensics | Endpoint detection | IOC integration | Identity Management | Incident Response | Log Analysis | MDE | MITRE D3FEND | Malware analysis | Microsoft Azure | Microsoft Sentinel | Mitre Attack | Network Traffic | Network Traffic Analysis | Powershell | Python | QRadar | Reverse Engineering | SIEM | SOAR | Security Orchestration | Security Orchestration Automation | Security Orchestration Automation Response | Security monitoring | ServiceNow | Splunk | Static Analysis | Threat Intelligence | Threat hunting | Traffic analysis
Education
Related jobs
-
Associate Principal, Trust and Safety, GenAI USD 142K-205KCybersecurity | Dashboarding | Data Transformation | Data Visualization | Data collectionMid-level Full TimeWashington D.C., DC, USA; Atlanta, GA, …2h ago
-
Senior Security Engineer, Google Public Sector USD 174K-252K800-171 | 800-53 | Access Management | Ansible | Cloud platformUp to 25 percent domestic travelSenior-level Full TimeReston, VA, USA; Colorado, USA2h ago
-
Security Engineer USD 186K-320KAWS GuardDuty | EDR | Encryption | ISO 27001 | Incident ResponseHealth and wellness resources | Remote work flexibility | Vacation and personal timeSenior-level Full TimeAustin, Texas9h ago
-
Bitcoin Security Director USD 170K-275KBitcoin | Blockchain Security | Consensus Security | Cryptography | Custody DesignExecutive-level Full TimeTysons Corner, VIRGINIA, United States11h ago
-
Senior Security Engineer USD 166K-220KAWS CDK | Attack vector mitigation | CI/CD | Cloud Security | Endpoint SecurityCommuter benefits | Health insurance | Paid time off | Professional development reimbursement | Relocation assistanceSenior-level Full TimeAshville, Ohio, United States11h ago
-
Senior Security Engineer USD 166K-220KAWS CDK | Attack vector analysis | CI/CD | Cloud Security | Continuous DeploymentCaregiver & wellness leave | Commuter benefits | Family planning and parenting support | Generous time off | Healthcare benefitsSenior-level Full TimeCosta Mesa, California, United States11h ago
-
Senior Security Engineer USD 166K-220KAWS | AWS CDK | Attack Vectors | Azure | CI/CD401k match | Commuter benefits | Dental insurance | Disability insurance | Health insuranceSenior-level Full TimeSeattle, Washington, United States11h ago
-
Senior Security Engineer USD 166K-220KAWS CDK | Attack vector mitigation | CI/CD | Cloud Computing | Design review401k retirement plan | Caregiver leave | Commuter benefits | Dental insurance | Disability insuranceSenior-level Full TimeWashington, District of Columbia, United States11h ago
-
Cyber Security/ZScaler Engineer USD 124K-155KAzure | Cisco | CyberArk | DNS | File ManagementOnsite workMid-level Full TimeUSA MD Rockville - 5600 Fishers …14h ago
-
Product Infrastructure Security Engineer USD 135K-200KAutomation | Cloud Security | Distributed Systems | Golang | Incident Response401k plan | Commuter benefits | Hybrid work options | Life AD&D and disability insurance | Medical/Dental/Vision insuranceSenior-level Full TimePalo Alto, CA14h ago
-
Product Infrastructure Security Engineer USD 135K-200KAutomation | Cloud Security | Distributed Systems | Incident Response | Infrastructure Scanning401k | Commuter benefits | Dental insurance | Disability insurance | Hybrid workSenior-level Full TimeWashington, D.C.14h ago
-
Product Infrastructure Security Engineer USD 135K-200KAutomation | Cloud Security | Distributed Systems | Incident Response | Kubernetes401k plan | Commuter benefits | Dental insurance | Disability insurance | Hybrid workSenior-level Full TimeRemote: US - East R14h ago
-
Bitcoin Security Director USD 170K-275KBitcoin Protocol | Blockchain Security | Consensus | Cryptography | Digital signaturesExecutive-level Full TimeTysons Corner, VIRGINIA, United States15h ago
-
Application Security Engineer USD 135K-200KApplication Security | Black box testing | Black-box | Box testing | Code Analysis401k plan | Back Up Care Support | Basic Life AD And Disability Insurance | Commuter benefits | Hybrid work optionsSenior-level Full TimeRemote: United States R15h ago
-
Staff Threat Research Engineer USD 162K-190KAI Security | AWS | Azure | Cloud Security | Cloud log analysisSenior-level Full TimeRemote, USA R15h ago
-
Sr. Product Security Engineer (Starlink) USD 168K-230KApplied cryptography | C++ | Golang | Hardware Security Module | Hardware security401k retirement plan | Company shuttle | Dental insurance | Employee stock purchase plan | Life insuranceSenior-level Full TimeRedmond, WA16h ago
-
Sr. Embedded Security Engineer (Starlink) USD 168K-230KAdversary detection | C++ | Cryptography | Distributed Systems | Go401k | Company shuttle | Employee stock purchase plan | Life insurance | Long-term disability insuranceSenior-level Full TimeRedmond, WA16h ago
-
Security Analyst - Tier 2 (West Coast, 2nd shift) USD 120K-140KEmail Security | Endpoint protection | FQL | IDP | IDSIPSMid-level Full TimeWest Coast16h ago
-
Security Analyst - Tier 2 USD 120K-140KCybersecurity | Endpoint protection | FQL | IDP | IDSIPSOn call weekend shiftsMid-level Full TimeBoston, MA17h ago
-
Manager, IT - SOC USD 108K-181KAWS | Automation | Azure | CIS Benchmarks | Cloud SecurityDental insurance | Hybrid work | Medical insurance | Retirement plan with company match | Snacks and weekly lunchesMid-level Full TimePittsburgh, PA18h ago
-
Junior Microsoft Security Consultant USD 60K-70KAccess Management | CIS Controls | Cloud Security | Compliance | Data ProtectionEntry-level Full TimeChicago, Illinois18h ago
-
Embedded Security Engineer (Starlink) USD 130K-175KAuthenticated Boot | C++ | Cryptography | Go | Hardware Security ModuleExtended hours | Weekend workSenior-level Full TimeBastrop, TX18h ago
-
Product Security Engineer (Starlink) USD 130K-175KAdversary detection | Applied cryptography | C++ | Distributed Systems | GolangExtended hours | Weekend work as neededSenior-level Full TimeBastrop, TX18h ago
-
Sr. Product Security Engineer (Starlink) USD 168K-230KApplied cryptography | C++ | Cryptography | Go | Incident ResponseExtended hours | Weekend workSenior-level Full TimeBastrop, TX18h ago
-
Sr. Embedded Security Engineer (Starlink) USD 168K-230KC++ | Cryptography | Go | Incident Response | Network SecuritySenior-level Full TimeBastrop, TX18h ago