- Advising and consulting services essential to the design and development of strategic, sustainable information security programs
- Talent acquisition and staff augmentation services that enable companies to source dedicated, industry-leading security experts and ensure the right team is in place
- Managed security services capabilities designed to improve an organization's situational awareness and security posture significantly and rapidly.
- The successful candidate will be BASED in the DALLAS, TX area and work in the office in Addison, TX each Tuesday and Wednesday.
- The successful candidate will have some experience in threat hunting as well as Security Analysis.
- The successful candidate will have experience working in or with an MSSP.
- The successful candidate will work 4 10-hour shifts, Sunday – Wednesday from 6am – 4pm Central.
- Monitor, analyze, and investigate security alerts in client environments
- Provide remediation recommendations for security events/incidents
- Mentor junior analysts and assist in the training process of new hires
- Collect, analyze, and deliver threat intelligence
- Collaborate on the development and improvement of standard operating procedures
- Take part in the creation and improvement of client/internal security policies and procedures
- Assists in the implementation and execution of Short and Long-Term Projects that align with managerial expectations as well as SOC wide goals under the guidance of SOC leadership
- Lead incident investigations during client incident response scenarios
- Participate in the team's on-call rotation to serve as an escalation point for after business hours
- Tier II/III analyst experience involving host analytics (EDR, Windows event logs, etc.), network-based evidence, and incident investigations
- Ability to conduct multi-source threat analysis utilizing SIEM event data
- Advanced knowledge and experience using SIEM, EDR, vulnerability management, network traffic analysis and other industry standard security technologies for event investigation
- Intermediate understanding of security relevant log ingestion required to achieve security use cases
- Strong understanding of IPv4, TCP/IP, low level networking and protocols, TCP/UDP ports and how they relate to security risk landscape
- Basic awareness of cloud technologies as it relates to security (AWS, Azure, GCP)
- Basic awareness of audit requirements (PCI, HIPAA, SOC, etc.)
- 5+ years of technical experience in Information Security or Network Engineering with at least 3+ years of experience in a Security Operations Center
- Able to effectively and independently identify and drive change to improve the Security Analyst team.
- Able to demonstrate integrity, leadership, teamwork, and results
- Must be available on a rotational basis to be the designated on-call Senior Analyst during off hours in case of a SOC emergency or inquiry.
Sr. Security Analyst - Addison, United States - Zyston LLC
1 month ago
Description
Zyston is an information security solutions company providing businesses the comprehensive range of end-to-end services required to build and operate mature, cost-effective information security programs. Zyston's flagship product and service– CyberCAST – provides the full-service capabilities required to manage complete oversight of an organization's information security program.
Zyston's full range of offerings includes:
We currently have a permanent opening for a Sr. Security (Operations) Analyst to join our team.
NOTES:
The Senior Security Analyst will serve on the front lines against emerging threats by triaging and assisting in the remediation of security alerts while also delivering recommendations to improve client security postures. Team members will be exposed to a wide variety of security tools including SIEM, Firewall, IDS/IPS, Endpoint/EDR, etc. that will be used to detect and investigate cyber threats.
Key Responsibilities:
Required Skills:
Qualifications: