|
Title: Information Risk Consultant / Security Analyst (Entry Level)
Location: Springfield, MA
Expected Duration: 12+ Months Contract
Pay Rate: $38/hr on w2
Job Description:
The Opportunity
- As a Security Analyst you will work in a fast paced, innovative and collaborative environment, on a team assembled to protect Employees, it’s customers and digital assets from potential cyber threats.
The Team
- As a member of the Security Operations Center (SOC) you will have an opportunity to be part of a highly functional team of cybersecurity analysts, across the globe, who are passionate about protecting client assets and customers by leveraging their problem-solving skills and innovative technology solutions. Our team is made up of analytical, technically oriented individuals, leveraging their knowledge of threat actor tactics and techniques, operating systems and platforms to identify and eradicate threats to client digital environments.
The Impact:
- Perform monitoring for cybersecurity related technologies generating alerts for potential security events requiring investigation.
- Perform technical analysis for cybersecurity events requiring deeper investigation.
- Perform Malware analysis and extract Indicators of Compromise (IOCs) to feed our Threat Intelligence Platform
- Learning about the business and technology environment to detect anomalous behavior from standard expected activity.
- Identify, classify, and document adversary Tactics, Techniques and Procedures (TTPs)
- Work collaboratively with our Security Intelligence team to enrich and enhance prevention, detection, and threat hunting capabilities.
- Partner with our Security Platforms team to develop playbooks required to successfully respond to specific threats
- Work with the Detection Engineering team to optimize alerting platforms through tuning of alerting logic.
The Minimum Qualifications
- High level knowledge of Cybersecurity attack and defense techniques
- Understanding of living off the land techniques used by adversaries, using tools such as PowerShell, WMIC, Task Scheduler, Windows Registry etc.
- Interest in continuous learning and a passion for Cybersecurity
- Ability to apply problem solving skills to support analysis and detection efforts
- Strong written and verbal communication skills
- Strong analytical and problem-solving skills
- Experience and confidence with communicating with and presenting to senior leadership
- Ability to work 4×10 shift schedule.
- The Ideal Qualifications
- Associate’s degree in a related field
- Certifications: CISSP, CISM, CISA, GCIH, GIAC
- Knowledge of and practical experience with the MITRE Telecommunication&CK framework
- Python, PowerShell or other scripting languages
- Functional knowledge of operating systems (Windows, Mac, Linux).
- Understanding of container technologies like Docker or Kubernetes
- Experience working with a SIEM platform
- Understanding of web application vulnerabilities including XSS, CSRF, SQL Injection, command injection and serialization attacks
- Strong understand of web authentication flows such as SAML and OAUTH
- Understanding of automated attacks such as credential stuffing and site scraping
