Job Details
Experience Needed:
Career Level:
Education Level:
Salary:
Job Categories:
Skills And Tools:
Job Description
- We are currently looking for a Tier 2 Security Analyst to be responsible for real-time monitoring, analysis, and resolution of identified security incidents.
- Will perform daily operations utilizing a SIEM and monitor events from multiple sources including but not limited to firewall logs, system logs (Unix and Windows), network and host based intrusion detection systems, applications, databases, and other security information monitoring tools.
- Moreover, to be considered for this role; it is preferred the candidate have 2-5 years of Security Operations.
Job Requirements
Qualifications & Requirements:
- A strong understanding of incident response methodologies
- Solid and demonstrable comprehension of Information Security including malware, emerging threats, attacks, and vulnerability management
- Ability to follow detailed process and procedure documentation
- Strong team player that collaborates well with others to solve problems and actively incorporate input from various sources
- Network Forensics Analysis
- Experience with log correlation utilities like or Elastic search
- Experience reviewing network traffic logs to identify malicious activity
- Experience with Snort or other network-based signature development
- BRO scripting experience is a big plus
- Static Binary Analysis
- Use of industry standard tool
- Experience with one or more programming languages "high level"
- Proficient with analysis/triage of Windows malware to obtain technical indicators
- Dynamic Binary Analysis
- Experience with Disassemblers and Debuggers
- Host Forensic Analysis
- Experience with tools like EnCase, FTK, Volatility
- Experience with Yara, OpenIOC, or other host-based signature development
- Experience across multiple platforms (Windows, Linux, Mac, iOS, Android
