Sr Security Analyst - Constellation Search Group
Dallas, TX 75240
About the Job
Title: Senior Security Analyst
Location: Remote
Compensation: 100 to 130k plus 10% bonus
Type: Direct Hire
We are seeking driven, passionate, and enthusiastic team members to join our team of information security professionals. The Senior Security Analyst will be the Subject Matter Expert (SME) on the investigation process, providing guidance to the Security Analyst team. The ideal candidate will be well versed in security event analysis through industry best practice toolsets, have a deep knowledge of current emerging threats, security content development, and be able to develop risk mitigation strategies required to protect the confidentially, integrity, and availability of information systems and data. Candidates should be proficient at working with internal business units and clients to resolve issues and develop effective action plans.
Responsibilities:
We are deeply committed to building a diverse and inclusive team. We believe that different backgrounds and life experiences make our team better. We do not discriminate against qualified employees or applicants because of race, color, religion, gender identity, sex, sexual preference, sexual identity, pregnancy, national origin, ancestry, citizenship, age, marital status, physical disability, mental disability, medical condition, military status, or any other characteristic protected by local law or ordinance.
Location: Remote
Compensation: 100 to 130k plus 10% bonus
Type: Direct Hire
We are seeking driven, passionate, and enthusiastic team members to join our team of information security professionals. The Senior Security Analyst will be the Subject Matter Expert (SME) on the investigation process, providing guidance to the Security Analyst team. The ideal candidate will be well versed in security event analysis through industry best practice toolsets, have a deep knowledge of current emerging threats, security content development, and be able to develop risk mitigation strategies required to protect the confidentially, integrity, and availability of information systems and data. Candidates should be proficient at working with internal business units and clients to resolve issues and develop effective action plans.
Responsibilities:
- Serves as the SME on the security event analysis process and procedures.
- Performs advanced threat hunting exercises to identify unknown threats within a client environment.
- Performs regular audits to gauge and improve performance including quality reviews (QA/QC) of current analysts based on Key Performance Indicators (KPIs) and provides feedback on improvement points to analysts.
- Works as the primary communications channel between the analyst team and other SOC departments, establishing/driving projects based on these communications.
- Works closely with Delivery Managers on client reporting, presentations, and meetings
- Participates in monthly status calls with clients to present key metrics and analyst findings.
- Coordinates the implementation and execution of Long-Term Projects that align with managerial expectations as well as SOC wide goals under the guidance of SOC leadership.
- Routinely evaluates Analyst team pain points via independent assessments or communication with analysts to drive independent and creative solutions to address these pain points.
- Designates and drives Short Term Projects based on these evaluations.
- Lead incident investigations during client incident response scenarios.
- Participate in the team's on-call rotation to serve as an escalation point for after business hours.
- Expected to conduct 1 week of Analyst II monitoring 2x/year to maintain visibility into analyst workflow, as well as to identify major pain points, and demonstrate leadership.
- Tier III analyst experience involving host analytics (EDR, Windows event logs, etc.), network-based evidence, and incident investigations.
- Ability to conduct multi-source threat analysis utilizing SIEM event data.
- Expert knowledge and experience using SIEM, EDR, vulnerability management, network traffic analysis and other industry standard security technologies for event investigation.
- Advanced understanding of security relevant log ingestion required to achieve security use cases.
- Strong understanding of IPv4, TCP/IP, low level networking and protocols, TCP/UDP ports and how they relate to security risk landscape.
- Basic awareness of cloud technologies as it relates to security (AWS, Azure, GCP)
- Basic awareness of audit requirements (PCI, HIPAA, SOC, etc.)
- 7+ years of technical experience in Information Security or Network Engineering with at least 3-5 years of experience in a Security Operations Center
- Strong written, verbal, and non-verbal communication skills, especially conveying complex information in an understandable manner.
- Must be available on a rotational basis to be the designated on-call Senior Analyst during off hours in case of a SOC emergency or inquiry.
- Ability to work extremely well under pressure while maintaining a professional image and approach.
- Able to effectively and independently identify and drive change to improve the Security Analyst team.
- Able to demonstrate integrity, leadership, teamwork, and results.
- Medical, Dental, Vision Insurance and Teledoc
- 401(k) w/ Matching.
- Bonus opportunity.
- FSA/HSA options.
- Vacation and holiday pay.
- Wellness and Health incentive programs.
We are deeply committed to building a diverse and inclusive team. We believe that different backgrounds and life experiences make our team better. We do not discriminate against qualified employees or applicants because of race, color, religion, gender identity, sex, sexual preference, sexual identity, pregnancy, national origin, ancestry, citizenship, age, marital status, physical disability, mental disability, medical condition, military status, or any other characteristic protected by local law or ordinance.
Source : Constellation Search Group