Remote Senior Security Analyst

Description:

• The Managed Services Senior Security Analyst is responsible for providing security solutions for clients.
• This role requires the analyst to consistently meet and exceed client expectations while representing and reinforcing the Cyderes brand through positive interactions with other teams.
• Responsibilities include performing deep dive investigations into security threats and implementing MITRE mapping to assess customers' current security posture.
• The analyst will provide overall guidance, instruction, mentorship, and leadership to other Security Analysts.
• Tasks include triage and advanced analysis across endpoint, server, and network infrastructure.
• The analyst will conduct Threat Hunting on customer networks to detect and isolate threats, providing recommendations.
• Proactive security investigations and searches will be performed to detect malicious activities in client environments.
• The role involves coordinating incident investigations and conducting deep dive analyses on detected threats.
• The analyst must understand and identify indicators of attack and compromise in alerts by hunting through data and reviewing investigation notes.
• A full understanding of the MITRE ATT&CK framework is required, including mapping clients' use cases to tactics and techniques.
• The analyst will update documentation and runbooks to ensure repeatable analysis.
• Participation in an after-hours on-call rotation as Incident Controller is expected.
• The role includes scoping customer security incidents and documenting, communicating recommendations, and guidelines based on analysis results.
• The analyst will analyze, review, and provide raw log data for deeper insights into escalations through SIEM.
• Effective oral and written communication is essential.
• Maintaining current knowledge and understanding of the threat landscape is required.

Requirements:

• Candidates must have 5 or more years of progressing/in-depth IT security experience, with practical experience in a senior role within the last three years.
• System Administration experience is required, including knowledge of Windows, Unix/Linux, and Mac systems.
• An advanced understanding of networking concepts and the ability to analyze network artifacts is necessary.
• Demonstrated experience in using Endpoint Detection and Response software such as Sentinel1, Crowdstrike, or Defender is required.
• Candidates must have advanced knowledge of at least one leading SIEM platform, including Sentinel, Splunk, Elastic, IBM Qradar, or Chronicle.
• Possession of at least one industry certification such as Sec+, CEH, or SANS Certification (e.g., GCIH, GCIA, GSEC, GMON) is required, or candidates should be working towards a related certification.
• Prior knowledge of SOAR platforms such as Siemplify or FortiSOAR is preferred.
• Expert-level analysis of security events is essential.
• Basic scripting or development experience in languages such as Python, JavaScript, PowerShell, or bash is required.

Benefits:

• Cyderes offers a competitive salary and benefits package.
• Employees have the opportunity to work in a dynamic and innovative environment.
• The company promotes professional development and continuous learning.
• Employees are part of a global team with diverse perspectives and experiences.
• Cyderes is committed to providing equal employment opportunities and fostering an inclusive workplace.