Enable job alerts via email!

Cyber Incident Response & Threat Detection Analyst

Mandex Inc

Ohio

On-site

USD 80,000 - 110,000

Full time

4 days ago

Be an early applicant

Boost your interview chances

Create a job specific, tailored resume for higher success rate.

Job summary

A leading company in cybersecurity is seeking a Cybersecurity Incident Response & Threat Detection Analyst to monitor and respond to threats within the Enterprise Network Environment. The role involves analyzing data for malware, correlating information from various sources, and developing countermeasures to enhance security. Candidates should have a degree in cybersecurity or relevant experience, along with DOD Top Secret Clearance and knowledge of security tools.

Benefits

Competitive salaries

401(k) plan

Qualifications

Bachelor’s degree in cybersecurity, Information Technology, or related field, or five years of relevant experience.
At least two years of experience in root cause analysis of cybersecurity events and incidents.
Knowledge of at least two security tools and ability to build scripts/tools.

Responsibilities

Analyze data for malware and compromises, both real-time and historical.
Correlate data from multiple sources such as IDS/IPS, packet capture, forensics tools.
Monitor and enforce incident response procedures and cybersecurity practices.

Skills

Root Cause Analysis

Malware Analysis

Scripting in SPL

Python

PowerShell

Education

Bachelor’s degree in cybersecurity or related field

Tools

Firewall

IDS/IPS

Antivirus

DLP

Vulnerability Management

CYBERSECURITY INCIDENT RESPONSE & THREAT DETECTION ANALYST

Location: Ft. Belvoir, VA, Battle Creek, MI, or Columbus, OH

Clearance: DOD Top Secret Clearance and eligibility for an IT-I Critical Sensitive security clearance or Tier 5 (T5)

Overview:

Participates in 24x7x365 monitoring of SIEM and other cybersecurity tools to detect and respond to threats within the Enterprise Network Environment. Performs actions to protect, monitor, detect, analyze, and respond to unauthorized activity. Uses cybersecurity capabilities and deliberate actions to respond to alerts or emerging threats. Reviews logged events for attack or compromise indicators. Monitors logs and traffic for Advanced Persistent Threats (APT) and subtle attacks. Uses intelligence resources including Open-Source Intelligence (OSINT) to stay aware of threats. Provides technical analysis and support for cybersecurity tools and applications, and helps apply defense measures to reduce network threats.

Key Responsibilities:

Analyze data for malware and compromises, both real-time and historical.
Correlate data from multiple sources such as IDS/IPS, packet capture, forensics tools, and intelligence sources.
Assess cyber incidents and take immediate actions to contain and recover affected systems and data.
Monitor and enforce incident response procedures and cybersecurity practices.
Develop countermeasures including custom SIEM and IDS rules/signatures to improve attack prevention and detection.
Perform incident handling tasks such as triage, response, documentation, reporting, and lessons learned.

Minimum Requirements:

Bachelor’s degree in cybersecurity, Information Technology, or related field, or five years of relevant experience.
At least two years of experience in root cause analysis of cybersecurity events and incidents.
Knowledge of at least two security tools (e.g., Firewall, IDS/IPS, Antivirus, DLP, Vulnerability Management, Forensics, Malware Analysis). Ability to build scripts/tools in SPL, Python, PowerShell to enhance threat detection.
Must possess DOD Top Secret Clearance and be eligible for an IT-I Critical Sensitive security clearance or Tier 5 (T5).
Baseline Certification for IAT-II and CNDSP/CSSP-IR.

MANDEX, Inc. is an Equal Opportunity Employer and conducts background screening and drug testing. We offer competitive salaries and benefits, including a 401(k) plan.

Get your free, confidential resume review.

or drag and drop a PDF, DOC, DOCX, ODT, or PAGES file up to 5MB.