Security Analyst, Managed Detection & Response

Remote Full-time
Security Analysts provide first-line security monitoring services to At-Bay’s Managed Detection & Response customers with specific responsibilities including:
• Operation and tuning of security monitoring tools including Endpoint Detection & Response (EDR), network monitoring, email security, Data Loss Prevention (DLP), Security Information and Event Management (SIEM), security automation tools, and others as needed
• Identification and analysis of anomalous activity in customer technology environments
• Triage of event data to identity potential indicators of compromise
• Escalation of potentially malicious activity to engage incident responders where necessary
• Participation in incident investigation, containment, remediation, and recovery activities where necessary
• Developing and maintaining customer relationships to facilitate delivery of MDR services
• Developing and delivering reports on identified activity to customer stakeholders as needed

Key skills
• Previous EDR, MDR, XDR, security monitoring, or incident response experience
• Strong oral and written communications skills
• Previous hands-on experience performing security operations including several of the following:
• Security monitoring using a variety of endpoint and network tools
• Deployment, tuning, and operation of security tools from vendors such as CrowdStrike, SentinelOne, and others
• Deployment, tuning, and operation of SIEM or other tools used to aggregate and analyze security-relevant data
• Triage and analysis of potential indicators of compromise
• Performing rapid response to contain and/or remediate potentially malicious activity
• Development and analysis of cyber threat intelligence
• Participation in investigations involving digital evidence
• Intrusion detection / cyber threat hunting
• Malware analysis
• Previous hands-on experience working in information technology operations (e.g., Network Operations Center, Security Operations Center, Incident Response Team, etc.)

Minimum requirements
• Bachelor’s degree or equivalent
• Minimum of 2 years of experience in cybersecurity operations, incident response, or another security discipline
• Willingness to travel as needed to perform job functions

Preferred requirements
• Significant undergraduate or graduate coursework in computer science, computer engineering, information systems, or cybersecurity
• Preferred candidates will have a mix of cybersecurity experience including either security operations or security engineering / architecture
• Knowledge of cloud environments including knowledge of cloud security products and services offered by major cloud service providers (e.g., AWS, Azure, Google)
• One or more industry cybersecurity certifications (e.g., GCIH, Security+, CISSP, etc.)

Work location
• USA, nationwide

Apply Now

Apply Now
Apply Now →

Similar Jobs

Experienced Registered Behavior Technician for In-Home ABA Therapy - Atlanta, GA

Remote

Immediate Hiring: Experienced Registered Behavioral Technician (RBT) for Clinic-Based ABA Therapy Services

Remote

Experienced Registered Behavioral Technician (RBT) - ABA Therapy for Children with Autism Spectrum Disorder

Remote

Experienced Registered Nurse - Telehealth: Providing Remote Care Coordination and Patient Support

Remote

Experienced Substitute Teacher for Riverside County Schools - Join Scoot Education's Innovative Team

Remote

Experienced Substitute Teacher for San Bernardino County - Flexible Schedules & Competitive Pay

Remote

Experienced School Year Instructional Coach for High-Dosage Tutoring Programs in Edgewater Park, NJ

Remote

Experienced School Year Tutor for K-8 Students in Math and Literacy - Mickleton, NJ

Remote

Experienced Secondary Social Studies Teacher for Kansas - Flexible Hybrid Remote Arrangement

Remote

USPS Office Helper

Remote

Associate Director, Regulatory Affairs – Remote

Remote

Principal Business Strategy Architect - Remote Available

Remote

Provider Contracting Advisor; Mountain States, Nevada & Pacific Northwest – Remote – Cigna Healthcare

Remote

**Experienced Data Entry Operator – Remote Opportunity with arenaflex**

Remote

Remote Customer Support Chat Agent – No Experience Required, Flexible Hours, $35/hr – Work From Anywhere in the U.S.

Remote

VICE PRESIDENT, WEB & DIGITAL EXPERIENCE

Remote

**Experienced Data Entry Specialist – Remote Opportunity at blithequark**

Remote

Supply Chain Analyst I

Remote

Vice President Wholesaler Strategy & Channel Management

Remote

Amazon Non-Voice Support Executive (Tamil) - Remote Opportunity in Nagercoil

Remote
← Back