CIRT Tier 2 Analyst
Tasks
- Analyze firewall and intrusion detection logs
- Analyze host logs and EDR alerts
- Analyze malicious scripts and code
- Analyze network traffic anomalies
- Classify and triage alerts
- Collaborate with internal and external CIRTs
- Contain and remediate suspicious activity
- Coordinate incident reporting to CISA
- Create tickets and initiate workflows
- Detect cyber security events and incidents
- Monitor and respond using SOAR platform
- Perform email forensic analysis
- Perform host forensic analysis
- Perform incident response lifecycle analysis
- Perform malware analysis to generate IOCs
- Submit alert tuning requests
Perks/Benefits
Skills/Tech-stack
Automation Response | Bash | Cloud Security | Cloud security monitoring | Cyber Threat | Cyber Threat Intelligence | Detection and Response | Digital forensics | Dynamic analysis | EDR | Elastic | Endpoint Detection and Response | Endpoint Forensics | Endpoint detection | IOC integration | Identity Management | Incident Response | Log Analysis | MDE | MITRE D3FEND | Malware analysis | Microsoft Azure | Microsoft Sentinel | Mitre Attack | Network Traffic | Network Traffic Analysis | Powershell | Python | QRadar | Reverse Engineering | SIEM | SOAR | Security Orchestration | Security Orchestration Automation | Security Orchestration Automation Response | Security monitoring | ServiceNow | Splunk | Static Analysis | Threat Intelligence | Threat hunting | Traffic analysis
Education
Related jobs
-
Senior SOC Analyst USD 130K-135KATTACK | Behavioral analytics | Detection engineering | EDR | Incident Response401k plan with matching | Bereavement leave | Employee assistance program | Employee discount program | Health, dental, and vision careSenior-level Full TimeSt. Louis, MO, United States8h ago
-
Cloud Security | Cortex XSIAM | Cortex XSOAR | Cybersecurity | Incident Response401(k) plan matching | Employee assistance program | Health dental vision care | Holidays | Life and disability insuranceSenior-level Full TimeRemote - Nationwide, United States R8h ago
-
Mid. Cyber Defense Incident Responder USD 110K-130KAccess Control | Anomaly Detection | Authentication | Authorization | Computer forensics401k match | Bereavement leave | Disability insurance | Employee assistance program | Health dental vision careMid-level Full TimeSan Antonio, TX, United States8h ago
-
Sr. Security Engineer USD 115K-129KAWS | AWS API | Amazon CloudTrail | Application logs | Authentication telemetry401k plan with company matching | Bereavement | Employee assistance program | Employee discount program | Health and Dental and Vision CareSenior-level Full TimeSan Antonio, TX, United States8h ago
-
Technical Solutions Architect II - Security USD 128K-160KCloud Security | Compliance | Data Protection | Defender XDR | Defender for Cloud401k matching | Bereavement leave | Dental and vision care | Disability insurance | Employee Legal BenefitsMid-level Full TimeRemote - Nationwide, United States R8h ago
-
Cybersecurity Analyst USD 87K-138KAccess Management | Active Directory | Awareness Training | Azure Entra | Azure Entra IDEntry-level Full TimeCanonsburg, PA, United States8h ago
-
DPS - IT - Cybersecurity Analyst (GRC Analyst) - 0321 USD 113K-113KAccess Control | Awareness Training | Cyber intelligence | Cybersecurity Alerts | Data ClassificationMid-level Full TimeTexas-Austin12h ago
-
Cybersecurity Incident Response Analyst USD 128K-214KCybersecurity | Incident Response | Log Analysis | Mitre Attack | Network ProtocolsEntry-level Full TimeUSA-VA-McLean13h ago
-
Senior Strategist, Kids and Learning Trust and Safety USD 132K-189KAutomation | Classification | Data Analysis | Data sets | DebuggingSenior-level Full TimeSeattle, WA, USA; Austin, TX, USA14h ago
-
Senior Manager, Cyber Security Operations Center USD 135K-165KCase management | Cloud Security | Cloud security monitoring | Cybersecurity automation | EDR401k match | ADandD insurance | Dental insurance | Disability benefits | Education benefitsSenior-level Full TimeDallas, TX, United States19h ago
-
Mid-level Full TimeAustin, Texas, United States1d ago
-
Cybersecurity Analyst, Junior USD 52K-108KAssessment and Authorization | Cloud Security | Controls validation | Cybersecurity | DevSecOpsEntry-level Full TimeUSA, NY, Rome (99 Otis St), …1d ago
-
Blockchain Security | Cloud Security | Contract Security | Cryptography | Custody solutionsExecutive-level Full Time2398 E. CAMELBACK RD, United States1d ago
-
Antivirus | Architectural governance | Azure DevOps | Change Management | Cloud Architecture401k match | Dental insurance | Employee assistance program | Flexible spending accounts | Flexible work schedulesSenior-level Full TimeUS-MA-MARLBOROUGH-MA4 ~ 1001 Boston Post Rd …1d ago
-
Security Operations Engineering Intern - BCIT USD 30K-30KAsset Inventory | Configuration assessment | Incident Response | Microsoft Excel | Microsoft PowerPointDental insurance | FSA | Medical insurance | Optional life insurance | Prescription Drug CoverageEntry-level Full Time Internship401 E Fayette St, United States1d ago
-
Principal Architect - Cybersecurity USD 175K-195KAccess Management | Active Directory | Cloud Security | Cloud Security Architecture | EDR401k match | Associate wellbeing programming | Career development and coaching | Comprehensive health benefits | Paid HolidaysSenior-level Full TimeUSA - Remote, United States R1d ago
-
Active Directory | Attack Path | Attack Surface Control | Attack path modeling | Attack surface401k | Dental insurance | Flexible spending | Health insurance | Vision insuranceMid-level Full TimeUS - NC - Home Office, …1d ago
-
Software Engineer, Sr. USD 148K-266KC# | C++ | Exploitation | Integration Testing | Kernel debuggingSenior-level Full TimeUSA MD Linthicum (Field), United States1d ago
-
Cybersecurity SME IV USD 150K-200KCSP Security | Cloud Security | Cybersecurity | Enterprise governance | Incident ResponseSenior-level Full TimeFt. Meade, MD, US1d ago
-
Senior Director of Network Security – Engineering Lead USD 136K-350KAPI | Access Control | Agile | Automation | CI/CDFlexible benefits | Paid leave | Paid volunteer time | Wellbeing programsSenior-level Full TimeNew York, NY, United States1d ago
-
Security Automation Engineer USD 156K-220KAI Assisted Development | API Integration | Alert routing | Cloud Native | Cloud Native SystemsSenior-level Full TimeRemote - US R1d ago
-
Lead Security Engineer — Cryptographic Libraries & TLS USD 175K-215KAPI Design | Bouncy Castle | CI/CD | Cryptography | Dependency ScanningSenior-level Full TimePlano, TX, United States1d ago
-
Lead Security Engineer — Blockchain USD 175K-185KAPI Gateway | API Security | AWS | Access Control | AgileBackup childcare | Financial coaching | Health care coverage | Mental health support | On-site health and wellness centersSenior-level Full TimePlano, TX, United States1d ago
-
Cyber Security Analyst - Sr. Consultant level USD 152K-243KAntivirus | Application Firewall | Application Security | Application vulnerability testing | Cloud Security401k | Dental insurance | Health insurance | Paid time off | Vision insuranceSenior-level Full TimeAshburn, VA, United States1d ago
-
Access Control | Authentication | Automation | CI/CD | Cloud NativeFlexible hybrid work model | Health and life insurance | Paid time off | Pension/retirement benefits | Personal/family care leaveMid-level Full TimeDallas, TX, United States R1d ago