Cyber Incident Response/Customer Security Operations - SkillBridge Intern

Cybersecurity operational experience with a focus in Managed Detection and Response Candidate must be located in the United States during their Skillbridge time Have 180 days of service or fewer remaining prior to your date of discharge and you have at least 180 continuous days of active service Obtain approval from your unit commander MOU must be approved and submitted before start Experience with EDR tools (preferred) Experience conducting Incident Response activities (preferred) Malware/Threat Analysis experience (preferred) Detection Engineering experience (preferred) Exposure to Cloud and Identity technologies (preferred)

Using Red Canary’s detection platform to analyze EDR telemetry, alerts, and log sources across several detection domains Publishing threats for customers using concisely-written communication while effectively conveying key and important indicators Detector Development: Researching coverage opportunities then creating new detectors, and tuning existing ones Improving the CIRT workflow through orchestration & automation