Overview
Security Analyst III, will assume a leadership role in our cybersecurity team, driving the development and execution of advanced security strategies. This position is pivotal in leading our advanced threat detection and incident response efforts. The successful candidate will bring expertise in cybersecurity, mentorship, and a deep understanding of security technologies. We are seeking a highly motivated and detail-oriented individual to join our team of security experts at our Security Operations Center (SOC).
Key Responsibilities
- Oversee day-to-day security operations of the SOC delivery team, advancing processes and fostering innovation.
- Responsible for guiding team of Security Analysts I & II serving multiple clients.
- Perform Threat Hunting on customer networks to detect, isolate threats and provide recommendations.
- Provide proactive security investigation and searches on the clients environment to detect malicious activities.
- Review periodic auditing of security incidents provided by Security Analyst II / Shift Leads
- Provide tactical support for major incidents impacting clients and/or FMS service incidents and issues by analyzing and providing raw log data for more insight into escalations through SIEM.
- Accountable for the SOC team's excellence insecurity incident monitoring, identification, assessment, quantification, reporting, communication, and mitigation efforts as contracted by clients
- Coordinate and collaborate with SOC Manager(s)and other teams to enhance service delivery
- Interview, train, and assess the skills of the Security Analysts I & II in the team
- Demonstrate leadership and communication skills
- Stay abreast of advanced threat intelligence, providing insights into emerging threats and collaborating with relevant stakeholders to implement proactive defense measures.
Qualifications
- Bachelor's degree in Computer Science,Information Technology, or a related field.
- 8+ years of experience in cybersecurity roles, with a focus on strategic planning and leadership.
- In-depth knowledge and working experience insecurity technologies such as Security Information and Event Management (SIEM), IDS/IPS, NDR, Data Loss Prevention(DLP), Proxy, Web Application Firewall (WAF), Endpoint Detection and Response(EDR), Anti-Virus, Sandboxing, network- and host-based firewalls, ThreatIntelligence, Penetration Testing, etc.
- Extensive knowledge of Advanced PersistentThreats (APT) tactics, techniques, and procedures
- Understanding of possible attack activities suchas network probing/scanning, DDOS, malicious code activity, etc.
- Full understanding of MITRE ATT&CK framework
- Understanding of common network infrastructuredevices such as routers and switches
- Understanding of basic networking protocols suchas TCP/IP, DNS, HTTP
- Basic scripting or development experience in oneof the following languages: Python, JavaScript, PowerShell, bash, etc.
- Relevant certifications (e.g., CertifiedInformation Systems Security Professional (CISSP), Certified InformationSecurity Manager (CISM)) are essential.
- Strong leadership, collaboration, andcommunication skills.
Career Path
- The Security Analyst III role represents a pinnacle in the cybersecuritycareer path. Successful professionals may explore opportunities as SecurityConsultant, or other executive-level roles.
- Join our elite team and contribute to shaping andimplementing cutting-edge security strategies, protecting our customers fromsophisticated cyber threats.
