Cyber Security Analyst II, Seneca Falls NY – On Site Required
US Citizenship or Permanent Green Card Status is required
Relocation package available
Education: HSD/GED is required.
Ethical Hacker Certification is preferred or must be willing to pursue accreditation.
Experience:
Minimum of 2 years' experience in a similar enterprise sized role with the ability to defend an enterprise globally is required.
Job Description:
Our clients work depends on a Cyber Security Analyst joining our team to support our global enterprise sized organization activities. As a Cyber Security Analyst supporting our CSOC team, you will be trusted to work on the latest technologies for Vulnerability Management and Reporting, Security Event and Information Management (SIEM), Next Generation Firewall, Enterprise Detection and Response (EDR), Web Application Vulnerability Scanning, and Forensic Imaging.
Who You Are:
A Cyber Security professional and threat hunting enthusiast, who is seeking opportunities to evolve his/her craft by understanding latest cyber threats and helping an enterprise size organization identify intrusion in its environment. In order to effectively do this, you leverage cutting edge Security Information and Event Management (SIEM) data analytics, as well as network/endpoint detection and response technologies for investigating any malicious activity in on-prem and cloud environments.
The Work:
· Hunt threats, perform monitoring and security incident triage through the review of SIEM events, network traffic data collection, endpoint activity logs.
· Identify and collect data associated with initial security investigation finding.
· Detection, monitoring, analysis, escalation of security incidents and Intrusion Detection with documentation and tracking of investigations to resolution, along with creating security alert notifications to steak holders.
· Incident handling and response with escalation as needed on any investigations requiring advanced analysis of security incidents.
· Analyze network traffic and intrusion alerts; discern false positives
· Splunk and Splunk UBA tuning
· File/link analysis and immunization against those types of attacks
Requirements:
· 1 year of Carbon Black experience preferred (antivirus solutions)
· Experience with common and uncommon security tools and suites (Kali-Linux, Metasploit, Hydra.)
· Disk and memory forensics experience.
· Strong analytical and technical capabilities and excels in critical thinking.
· In-depth architecture knowledge of Splunk is preferred
· Strong MITRE ATT&CK framework knowledge
· Network ports and protocols
· Vulnerability assessment tools (Nessus, Nmap)
· Scripting for automation (Python, PowerShell, APIs)
· Strong troubleshooting, reasoning, problem-solving
· Endpoint, and network security tools/techniques (i.e. investigating Anti Virus or IDS alerts)
· Demonstrated ability to write clear and concise technical documentation
· Ability to multi-task, change priorities with short notice, and effective time management skills
· High standard of professionalism and ethics
Click the checkbox next to the jobs that you are interested in.
Continuous Monitoring Skill
Cybersecurity Skill
Cyber Security - Information Assurance Technician (IAT II)
CACI, Fort Drum, NY
Cyber Security Analyst Co-op (May - Dec 2024)
ITT, Inc., Seneca, NY