Job Title: Cyber Defense Analyst (L1)
What you will do
Complete Cyber Monitoring and Incident Response Operations Playbook/Checklist activities including, but not limited to: log review, vulnerability management activities, management report scheduling and running, alert analysis, filter modifications and escalation follow up activity status
Monitor CSOC alert queue and investigate detections for suspicious events
Develop, tune and maintain tools to automate analysis capabilities for network-based, host-based and log-based security event analysis. Create signatures, rulesets, and content analysis definitions from various intelligence sources for a variety of detection capabilities
Organize and maintain documentation of detection capabilities, alert definition, policy configurations, and tool rulesets
Maintain adherence to Cybersecurity Operations Center standards, policies and procedures
Remain up-to-date on the latest security information in order to validate the security analysis and identification capabilities of the security operations technologies
Participate in efforts to analyze and define security filters and rules for a variety of security parameters
In this role, you will bring:
Bachelors degree in cybersecurity or a related 4-year degree, or 3-6 years of relevant IT experience, or 2-4 years of IT Security experience
A good team player with a passion for cyber defense
Intrusion Detection, Network Traffic Analysis, Log Analysis, Rule/Signature/Content Development, programming or scripting required
Ability to analyze logs, alerts, network traffic and other data sources to validate security events
Ability to create signatures and detection content in IDS, SEIM and log analysis platforms
Ability to consume, comprehend and utilize and create indicators of compromise
Perform daily analysis of detection reports and alerts
Maintain tools, scripts and applications for detection and automation capabilities
Identify opportunities for capability and efficiency improvements
Exhibit understanding of tools, tactics, and procedures of malicious actors and advanced persistent threats
Identify and report on detection trends
...delivering lifecycle energy security solutions to mission critical government and commercial facility Owners. We specialize in the... ...have a Bachelor's Degree in a relevant field. This is an entry-level role; it requires 0-2 years of experience. Some experience or...
Summary:The Investment and Corporate Banking Advisory (ICBA)- Americas is responsible for the Advisory function within Investment & Corporate Banking Regulatory Compliance (ICBRC), which comprises ICBA and the CMG (Conflicts Management Group). The candidate should...
...Are you an experienced Inpatient Coder looking for a remote role where your expertise truly matters? Join a collaborative and forward... ...hire faster and connect top talent with opportunities, from entry-level positions to the C-suite. With units specializing in...
...Job DescriptionJob Description JOB SUMMARY The role of the HVAC Startup Technician is to manage and perform startup activities and system performance evaluations on new construction and existing building projects of all types to include documentation of pre-functional...
...departures daily. For broader travel options, Boston Logan International Airport is 4.5 hours away and provides service from over 40 airlines to more than 80 non-stop domestic destinations and over 50 non-stop international destinations J-1 and H-1B visa sponsorship available