IT Security Analyst (Purple Team Analyst)
As a Purple Team analyst, you will be responsible for analyzing, detecting, and mitigating cyber threats targeting enterprise environments. You will design and implement robust detection mechanisms to proactively identify malicious activities across on-premises, cloud, and hybrid infrastructures. This role requires strong expertise in threat hunting, security frameworks, and advanced detection technologies to ensure comprehensive protection against emerging threats.
What do you need to succeed?
Bachelor's or Master's Degree in Computer Science, Information Security, Cybersecurity, or a related field.
Minimum of 3-5 years in cybersecurity roles, such as Threat Hunter or Detection Engineer.
Threat Detection Expertise:
Experience with endpoint detection and response (EDR) solutions (e.g., SentinelOne, CrowdStrike, FortiEDR, Defender for Endpoint).
Familiarity with behavioral analytics and anomaly detection techniques.
Threat Intelligence and Analysis:
Understanding of threat intelligence sources (e.g., MITRE ATT&CK, D3FEND) and their application in detection strategies.
Ability to research and adapt to emerging threats and attack methodologies.
Programming and Automation:
Scripting skills in Python, PowerShell, or Bash for automating security tasks.
Experience developing integrations and automated workflows using APIs.
Hands-on experience with cloud security tools (e.g., AWS GuardDuty).
In-depth knowledge of IP networks, firewalls, intrusion detection/prevention systems (IDS/IPS), and packet analysis.
Operating Systems:
Strong knowledge of Linux and Windows internals, including log analysis and common attack vectors.
Tool Proficiency:
Familiarity with open-source tools like Zeek, Falco, Wireshark, and OSQuery.
Knowledge of malware analysis tools and techniques.
Organizational skills and competences
Ability to work effectively with cross-functional teams, including Incident Response, IT, and Risk Management.
Strong written and verbal communication skills to document detection logic and present findings to technical and non-technical stakeholders.
Excellent troubleshooting skills for identifying root causes of detected threats.
Analytical mindset to assess complex technical issues and develop creative detection solutions.
Ability to quickly adapt to new technologies, frameworks, and threat landscapes.
Willingness to stay current with industry trends and certifications.
High level of precision in rule creation and tuning to minimize false positives and ensure detection accuracy.
Desired certifications, courses and training:
Certified Detection Analyst (CDA)
Certified Red Team Professional (CRTP) or expert (CRTE)
Certified Azure Red Team Professional (CARTP) or expert (CARTE)
OffSec Certified Professional (OSCP)
GIAC Defending Advanced Threats (GDAT)
'/%3e%3cpath%20d='M101.744%2012.4726L102.894%2016.1947L99.0021%2013.2201L101.744%2012.4726ZM105.3%208.40937H100.488L99.0026%203.59473L97.5116%208.41047L92.7%208.40385L96.5965%2011.3834L95.1055%2016.1942L99.0021%2013.2196L101.408%2011.3834L105.3%208.40992V8.40937Z'%20fill='white'/%3e%3cdefs%3e%3clinearGradient%20id='paint0_linear_5593_1381'%20x1='90'%20y1='9.44471'%20x2='99'%20y2='9.44471'%20gradientUnits='userSpaceOnUse'%3e%3cstop%20stop-color='%2300AD70'/%3e%3cstop%20offset='0.998594'%20stop-color='%2300B67A'/%3e%3cstop%20offset='1'%20stop-color='%23DCDCE6'/%3e%3c/linearGradient%3e%3c/defs%3e%3c/svg%3e){kind=small}
job faster
