Cyber Defense Senior Analyst

New

Based in the United StatesFull-TimeSenior

Salary not disclosed

Apply NowOpens the employer's application page

Job Details

3+ years of experience in a Security Operations Center (SOC) or Cyber Incident Response environment.
Strong understanding of incident response lifecycle, MITRE ATT&CK framework, and cyber attack methodologies.
Hands-on experience analyzing logs and security telemetry from SIEM, EDR, firewalls, proxies, and related systems.
Familiarity with tools such as Splunk, QRadar, CrowdStrike, Microsoft Defender, or similar security platforms.
Solid knowledge of operating systems (Windows, Linux, macOS), networking fundamentals, and cloud environments (AWS, Azure, GCP).
Ability to investigate and respond to security incidents including malware, phishing, data breaches, and network attacks.
Experience in containment, eradication, and recovery processes with a strong focus on root cause analysis.
Relevant cybersecurity certifications (e.g., GCIH, GCFA, CEH, GCED, CISSP, or CISM) are strongly preferred.
Strong analytical, documentation, and communication skills in a high-pressure operational environment.
Ability to work in rotating schedules, including a 10x4 Wednesday–Saturday shift pattern in a 24/7 environment.

Monitor, triage, and investigate security alerts and events across SIEM, EDR, and other security platforms as part of a 24/7 security operations function.
Perform in-depth analysis of potential threats, including malware, phishing, intrusion attempts, and anomalous activity, following defined incident response procedures.
Execute end-to-end incident response activities including containment, eradication, recovery, and post-incident documentation.
Escalate high-severity incidents to appropriate incident response and management teams while ensuring clear and timely communication.
Maintain accurate and detailed case documentation, including analysis findings, actions taken, and incident timelines.
Collaborate with internal and external stakeholders to support incident resolution and coordinated response efforts.
Contribute to the continuous improvement of SOC processes, including playbooks, SOPs, detection rules, and use cases.
Identify operational trends and risks, providing feedback to leadership to enhance detection and response capabilities.
Participate in shift handovers, ensuring continuity through clear reporting and case updates.

View Full Description & ApplyYou'll be redirected to the employer's site