Senior MDR Analyst

Blackpoint Cyber

$100K — $130K *
US-AnywhereRemote in United States
Information Technology
5 - 7 years of experience
Job Overview by Ladders

Qualifications

  • 5+ years in information security; training may substitute for 1 year of experience
  • Experience in a Security Operations Center (SOC)
  • 2+ years triaging endpoint events from EDR and NGAV
  • Deep knowledge of threat indicators in Windows environments
  • Solid understanding of at least two operating systems: Windows, Linux, or OSX
  • Familiarity with ELK stack and scripting in Powershell, Python, Go
  • Knowledge of AWS services like EC2 and S3

Responsibilities

  • Analyze anomalous network events in a 24x7 SOC environment
  • Collaborate with MDR Analysts to investigate cyber threats
  • Develop and report incident analysis findings
  • Design operational processes to enhance SOC efficiency
  • Provide actionable threat analysis across customer environments
  • Build test lab environments for research on new techniques
  • Review sandbox technologies for insights on IOCs

Benefits

  • Health, Vision, Dental, and Life Insurance plans
  • Robust 401k plan
  • Discretionary Time Off
  • Additional minor perks
Full Job Description
Shift Requirement

This is a Monday through Friday day shift position

How You'll Make an Impact:
  • Analyze and evaluate anomalous network and system events in a 24x7x365 Security Operation Center (SOC) environment via conducting lead-less threat hunting.
  • Collaborate with MDR Analysts to research and investigate emerging cyber security threats; become an escalation point of contact for advanced intrusion analysis.
  • Develop Incident analysis reports and work across business units and customers to bring issues to a close.
  • Help design and build operational processes and procedures to improve overall SOC efficiency.
  • Provide actionable threat and vulnerability analysis based on security events for many independent customer environments.
  • Build test lab environments to research emerging techniques and make contributions to the internal and external knowledge development of threat operations.
  • Review sandbox technologies for additional IOCs uncovered from artifacts uncovered during analysis.

What you'll Bring:
  • Five (5+) years of experience in an information security role. Progressive relevant training and/or certification may be substituted for one (1) year of the experience requirement
  • Experience working in a Security Operations Center (SOC)
  • Two (2+) years of experience with triaging endpoint events from EDR, NGAV, and supporting the Incident Response (IR) process
  • Deep knowledge on assessing threat indicators in a Windows Environment (e.g. Malware/Malicious Anomalies/Abnormal network Activity/Root Level Compromise, Forensic Artifacts, etc.)
  • Robust understanding of at least two of the following: Windows, Linux or OSX;
  • Familiarity with ELK stack (Dashboards, Logstash Config, Searching) Scripting / Programming with Powershell, Python, and Go
  • Familiarity with AWS services such as EC2, S3 and IAM and Azure/M365
  • Experience in developing, refining, and performing leadless threat hunting analysis to uncover new or potential incidents and report on results
  • Excellent problem solving, critical thinking, and analytical skills with the ability to deconstruct issues (hunting anomalous pattern detection)
  • Excellent written and verbal communication skills to effectively summarize and present technical findings to both technical and non-technical audiences

Bonus:
  • Bachelor's Degree in Computer Science or related technical discipline
  • Network/System Administration and/or Engineering
  • Deep forensic knowledge of Windows, Mac OS and/or Linux
  • Experience in Digital Forensics and Incident Response a plus
  • Malware Analysis (Behavioral and/or Static analysis- IDA, Cuckoo Sandbox, x86/x64 Debugging) Pentesting/Red/Blue Team
  • Capture The Flag (CTF) Development

For eligible employees in the US, Blackpoint offers competitive Health, Vision, Dental, and Life Insurance plans, a robust 401k plan, Discretionary Time Off, and other minor perks.

Similar Jobs

More Jobs at Blackpoint Cyber

More Information Technology Jobs

Find similar Senior MDR Analyst jobs: