Enable job alerts via email!
Sr. Cybersecurity Incident Response Analyst (Application Analyst III) - Digital and Technology [...]
Mount Sinai Morningside
New York (NY)
Remote
USD 100,000 - 130,000
Full time
Boost your interview chances
Create a job specific, tailored resume for higher success rate.
Job summary
A leading healthcare organization is seeking a Sr. Cybersecurity Incident Response Analyst to join their Cybersecurity Operations team. This role focuses on detecting, analyzing, and responding to cybersecurity incidents, utilizing advanced security technologies and data analysis. The ideal candidate will have extensive experience in IT, incident response, and threat analysis, and will collaborate with various teams to enhance security measures. This position offers a unique opportunity to contribute to the organization's cybersecurity posture while working in a dynamic environment.
Qualifications
- Minimum five years of diverse IT experience.
- Experience managing security in cloud environments.
Responsibilities
- Respond to and triage cybersecurity incidents.
- Lead and participate in 'hunt campaigns' using threat intelligence.
- Analyze security incidents to improve detection operations.
Skills
Education
Tools
Job description
The Mount Sinai Cybersecurity Operations team seeks a highly motivated Sr. Cybersecurity Incident Response Analyst. This key team member will participate in incident response, threat investigations, threat campaigns, develop detection methodologies, and support the security monitoring team. The primary focus is to detect, analyze, and respond to cybersecurity incidents to minimize their impact, utilizing data analysis, threat intelligence, and advanced security technologies.
- Respond to and triage cybersecurity incidents from 3rd party MDDR providers.
- Hunt for and identify threats, threat actor groups, and their techniques, tools, and processes.
- Lead and participate in 'hunt campaigns' using threat intelligence and log data analysis to detect and eliminate threat actors.
- Provide investigative support for large-scale and complex security incidents.
- Analyze security incidents to improve use cases and alert catalogs.
- Enhance processes for detection operations across multiple detection sets.
- Perform forensic analysis of network packets, DNS, proxy, Netflow, malware, host security, and application logs.
- Leverage the MITRE ATT&CK framework for analysis and detection improvements.
- Validate suspicious events using open-source and proprietary intelligence sources.
- Collaborate with teams to develop behavioral and signature detections using various machine learning techniques.
- Interface with internal teams to resolve issues and provide incident information.
- Become proficient with third-party threat intelligence tools as needed.
- Bachelor's degree in Computer Science or related field, or equivalent experience. Advanced degree preferred.
- Minimum five years of diverse IT experience.
- Experience with SIEM and SOAR platforms.
- Deep understanding of network and host intrusion analysis.
- Familiarity with frameworks like MITRE ATT&CK, STIX, TAXII, and the Cyber Kill Chain.
- Experience with EDR technologies (e.g., CrowdStrike, Carbon Black, Defender ATP, SentinelOne).
- Experience managing security in cloud environments (Azure, GCP, AWS).
- Reverse engineering, C&C exploitation, and system/network forensics experience.
- Certifications such as GCIH, GCIA, GCFE, GREM, GCFA, GSEC, CEH.
- Experience with large data set normalization and parsing.
- Skills in statistical analysis, data modeling, clustering, and predictive analytics.
- Ability to translate security issues into analytical models and multitask effectively.
- Excellent communication skills.
- Knowledge of threat hunting tools and techniques.
- Experience in Red or Blue team operations.
- Passion for research and understanding internet threats.
- Ability to interface effectively with clients and document technical details clearly.
'/%3e%3cpath%20d='M101.744%2012.4726L102.894%2016.1947L99.0021%2013.2201L101.744%2012.4726ZM105.3%208.40937H100.488L99.0026%203.59473L97.5116%208.41047L92.7%208.40385L96.5965%2011.3834L95.1055%2016.1942L99.0021%2013.2196L101.408%2011.3834L105.3%208.40992V8.40937Z'%20fill='white'/%3e%3cdefs%3e%3clinearGradient%20id='paint0_linear_5593_1381'%20x1='90'%20y1='9.44471'%20x2='99'%20y2='9.44471'%20gradientUnits='userSpaceOnUse'%3e%3cstop%20stop-color='%2300AD70'/%3e%3cstop%20offset='0.998594'%20stop-color='%2300B67A'/%3e%3cstop%20offset='1'%20stop-color='%23DCDCE6'/%3e%3c/linearGradient%3e%3c/defs%3e%3c/svg%3e){kind=small}
Similar jobs
Sr. Cybersecurity Incident Response Analyst (Application Analyst III) - Digital and Technology [...]
Mount Sinai Medical Center
New York
Remote
USD 99,000 - 149,000
Sr. Cybersecurity Incident Response Analyst (Application Analyst III) - Digital and Technology [...]
Mount Sinai Health System
New York
Remote
USD 99,000 - 149,000
Epic Willow Ambulatory Applications Analyst III-Digital and Technology Partner - Remote
Mount Sinai Hospital
New York
Remote
USD 99,000 - 149,000
Epic Inpatient Willow Applications Analyst III - Digital and Technology Partners - Remote
Mount Sinai Medical Center
New York
Remote
USD 99,000 - 149,000
Epic Ambulatory Applications Analyst III-Digital and Technology Partners - Remote
Mount Sinai Medical Center
New York
Remote
USD 99,000 - 149,000
job faster
