Job Description
Are you a seasoned cybersecurity professional passionate about defending against advanced threats? Do you thrive in a fast-paced, dynamic environment? If so, we want you to join our elite team!
We're looking for a highly skilled Senior SOC Security Analyst (L3) to protect our global clients from relentless cyber adversaries. You'll be the ultimate technical expert, leading the charge in incident response and mentoring fellow analysts. If you're ready to take your cybersecurity career to the next level and make a real impact, this is the perfect opportunity for you!
Your Mission: Defend and Protect:
Lead Incident Response: Handle active intrusions and escalations from L1 and L2 analysts, diving deep into client systems and logs to uncover attacker activity.
Expert Analysis: Perform advanced analysis of malware, attacker network infrastructure, and forensic artifacts.
Proactive Threat Hunting: Hunt for suspicious activity based on anomalous behavior and curated intelligence.
Live Response: Conduct live response analysis of compromised endpoints.
Incident Management: Participate in the response, investigation, and resolution of security incidents.
Documentation and Communication: Provide clear and concise incident investigation, handling, response, and documentation.
Collaboration: Engage and assist Incident Response teams for active intrusions.
Process Improvement: Assist in the advancement of security policies, procedures, and automation.
Mentorship: Serve as the technical escalation point and mentor for lower-level analysts.
Client Communication: Regularly communicate with clients to inform them of incidents and aid in remediation.
Your Skills and Expertise:
People Skills:
Ability to handle high-pressure situations productively and professionally.
Ability to work directly with customers to understand requirements and feedback.
Advanced written and verbal communication skills.
Strong teamwork and interpersonal skills.
Ability to work in a 24/7/365 environment.
Tech Skills:
Knowledge and experience with SIEM solutions, Cloud App Security tools, and EDR.
Advanced knowledge of network protocols and network telemetry.
Forensic artifact and analysis knowledge of Windows and Unix systems.
Expertise in Endpoint, Web, and Authentication log analysis.
Experience with SIEM/EDR detection creation.
Experience responding to modern authentication attacks.
Expert knowledge of common attack paths, including LOLbin use, common adversary tools, and business email compromises.
Strong Knowledge of:
SIEM workflows (preferably Sentinel and Splunk).
Modern authentication systems and attacks (SSO, OATH, Entra, etc.).
Malware Detection.
Network Monitoring metadata.
Email Security.
Windows and Unix forensic artifacts.
Windows PE and Maldoc analysis.
Remote access solutions.
Lateral movement methodologies.
O365 attack paths.
Network metadata analysis.
Credential harvesting tools and methodologies.
Experience countering ransomware threat actors / operations preferred.
What We're Looking For:
Experience in intrusion analysis/incident response, digital forensics, penetration testing, or related areas.
5+ years of hands-on SOC/TOC/NOC experience.
GCIA and GCIH required. GCFA, GCFE, CISSP, Security +, Network +, CEH, RHCA, RHCE, MCSA, MCP, or MCSE preferred.
Familiarity with technologies such as Sentinel, Splunk, Microsoft Defender suites, Crowdstrike Falcon, SentinelOne.
Familiarity with GPO, Landesk, or other IT Infrastructure tools.
Understanding and/or experience with programming languages (JavaScript, Python, Lua, Ruby, GoLang, Rust).
Minimum bachelor's degree in Information Security, Computer Science, or other IT-related field or equivalent experience.
US Citizenship is required.
What We Offer:
A challenging and rewarding career in cybersecurity.
Opportunity to work with cutting-edge technologies.
A collaborative and supportive team environment.
Opportunities for professional growth and development.
Work out of the College Park, Maryland office 2 - 3 days per week.
A four days on, three days off schedule.
Join our team and be a vital part of our cyber defense!
Job Details:
Job Type: Full-time
Location: College Park, MD
Shift Requirement: 4 days on 3 days off.
US Citizenship is required.
We are an equal opportunity employer and value diversity. We are committed to creating an inclusive environment for all employees.
Employment Type: Full-Time
Salary: $ 78,029.00 Per Year
Job Tags
Full time, Remote job, Shift work, Night shift, 2 days per week, 3 days per week,