Remote Senior Security Analyst

Description:

• The Managed Services Senior Security Analyst is responsible for providing security solutions for clients.
• This role requires demonstrating the capacity to consistently meet and exceed client expectations while representing and reinforcing the Cyderes brand through positive interactions with other teams.
• Responsibilities include performing deep dive investigations into security threats and implementing MITRE mapping to assess customers' current security posture.
• The Senior Security Analyst will provide overall guidance, instruction, mentorship, and leadership to other Security Analysts.
• The position involves performing triage and advanced analysis tasks across endpoint, server, and network infrastructure.
• Threat hunting on customer networks to detect and isolate threats, along with providing recommendations, is a key responsibility.
• Proactive security investigations and searches on client environments to detect malicious activities are required.
• The analyst will coordinate incident investigations and conduct deep dive analyses on detected threats.
• Understanding and identifying indicators of attack and compromise in alerts is essential, as is hunting through data and reviewing investigation notes.
• A full understanding of the MITRE ATT&CK framework is necessary, including mapping clients' use cases to tactics and techniques.
• The role includes updating documentation and runbooks to ensure repeatable analysis.
• Active participation in an after-hours on-call rotation as Incident Controller is expected.
• Scoping customer security incidents and documenting, communicating recommendations and guidelines based on analysis results are part of the job.
• The analyst will analyze, review, and provide raw log data for deeper insights into escalations through SIEM.
• Effective oral and written communication is crucial.
• Maintaining current knowledge and understanding of the threat landscape is required.

Requirements:

• Candidates must have 5 or more years of progressing/in-depth IT security experience, with practical experience in a senior role within the last three years.
• System Administration experience in Windows, Unix/Linux, and Mac is required.
• An advanced understanding of networking concepts and the ability to analyze network artifacts is necessary.
• Demonstrated experience in using Endpoint Detection and Response software such as Sentinel1, Crowdstrike, and Defender is essential.
• Candidates must have advanced knowledge of at least one leading SIEM platform, including Sentinel, Splunk, Elastic, IBM Qradar, or Chronicle.
• Possession of at least one industry certification such as Sec+, CEH, or SANS Certification (e.g., GCIH, GCIA, GSEC, GMON) is required, or candidates should be working towards a related certification.
• Prior knowledge of SOAR platforms such as Siemplify or Forti SOAR is preferred.
• Expert-level analysis of security events is necessary.
• Basic scripting or development experience in languages such as Python, JavaScript, PowerShell, or bash is required.

Benefits:

• Cyderes offers a competitive salary and benefits package.
• The company promotes a culture of continuous learning and professional development.
• Employees have the opportunity to work in a fully remote environment.
• Cyderes values diversity and is an Equal Opportunity Employer (EOE), ensuring qualified applicants are considered for employment without regard to race, religion, color, sex, age, disability, sexual orientation, genetic information, national origin, or veteran status.