Remote Principal Security Analyst

Description:

• The Managed Services Principal Security Analyst is responsible for security solutions for clients.
• This role requires demonstrating the capacity to consistently meet and exceed client expectations while representing and reinforcing the Cyderes brand through positive interactions with other teams within the company.
• It is a customer-facing role that involves strategic advisory, deep-dive analysis, and custom security content for Cyderes’ managed service customers.
• Responsibilities include taking ownership of positive security outcomes for a designated set of customers.
• The analyst will provide overall guidance, instruction, mentorship, and leadership to other Security Analysts.
• Acting as a trusted advisor to customers is a key aspect of this role.
• The analyst will develop custom dashboards and reports for regular customer status updates.
• Ensuring the quality of SOC deliverables to the Principal Analyst’s customers is essential.
• Proactive security investigation and searches on client environments to detect malicious activities are required.
• The role involves expert-level strategic analysis of customer security posture, risk level, and security data.
• The analyst will update documentation and runbooks to ensure repeatable analysis and advise Detection Engineering, Automation Engineering, and Telemetry Engineering on technology improvements to close gaps in customer security posture.
• Documenting and communicating recommendations and guidelines based on analysis results is necessary.
• Maintaining current knowledge and understanding of the threat landscape is expected.

Requirements:

• Candidates must have 5 or more years of progressing/in-depth IT security experience.
• System Administration experience in Windows, Unix/Linux, and Mac is required.
• An advanced understanding of networking concepts and the ability to analyze network artifacts is necessary.
• Demonstrated experience in using Endpoint Detection and Response software such as SentinelOne, Crowdstrike, and Defender is essential.
• Candidates should have advanced knowledge of at least one leading SIEM platform, including Sentinel, Splunk, or Chronicle.
• Certification is preferred, such as GCIH, GCIA, GSEC, GMON, OSCP, or working towards a related certification.
• Prior knowledge of SOAR platforms such as Siemplify or Forti SOAR is required.
• Basic scripting or development experience in languages like Python, JavaScript, PowerShell, or bash is necessary.
• Exceptional written and verbal communication skills are a must.
• Candidates should demonstrate expert knowledge of the MITRE ATT&CK framework.

Benefits:

• Cyderes offers a competitive salary and benefits package.
• The company promotes a diverse and inclusive work environment.
• Employees have the opportunity to work remotely.
• Continuous learning and professional development opportunities are provided.
• The company values work-life balance and offers flexible working arrangements.