Sr. Security Analyst jobs in United States
cer-icon
Apply on Employer Site
company-logo

ECS · 3 months ago

Sr. Security Analyst

positionFAIRFAX, VA, 22031, United States
timeFull-time
remoteOnsite
senioritySenior Level

ECS is a leading managed cybersecurity services provider, and they are seeking a Sr. Security Analyst to work in their Fairfax, VA office. The role involves leveraging technical proficiency in cybersecurity principles and Elastic SIEM to protect against and respond to cyber threats, while also engaging with customers to deliver tailored solutions.

E-Commerce

Responsibilities

Network Monitoring and Intrusion Detection: Perform analysis using various defense tools, including IDS/IPS, firewalls, and host-based security systems
SIEM Management: Utilize Elastic SIEM to correlate events and identify indicators of threats, creating actionable intelligence
Threat Research: Investigate emerging threats and vulnerabilities to enhance incident identification processes
Threat Detection: Implement both log-based and endpoint-based detection strategies to identify and mitigate threats from multiple sources
Content Development: Develop and customize SIEM content such as machine learning rules, signatures, and dashboards according to customer requirements
Activity Correlation: Correlate data across network, cloud, and endpoints to identify attacks and unauthorized actions
Alert Management: Review and respond to alerts from SIEM and other sensors; document incidents in formal, technical reports
Phishing Analysis: Analyze phishing email submissions to determine threat levels and appropriate responses
Incident Response Support: Provide effective incident response and mitigation strategies to contain and rectify breaches
Threat Intelligence Integration: Collaborate with threat intelligence and threat-hunting teams to maintain up-to-date knowledge of threat landscapes
Tool Evaluation: Assist in assessing new security tools and analytical techniques for integration into managed security services
Breach Investigation: Support both large-scale and smaller-scale cyber breach investigations
Stakeholder Communication: Effectively communicate cyber events and findings to both internal and external stakeholders

Qualification

Elastic SIEMCybersecurity principlesAnalytical capabilitiesThreat detectionIncident responsePhishing analysisThreat intelligenceInterpersonal skills

Required

Technical proficiency with Elastic SIEM
Understanding of cybersecurity principles
Strong analytical capabilities
Excellent interpersonal skills
Experience with network monitoring and intrusion detection
Ability to perform analysis using various defense tools, including IDS/IPS, firewalls, and host-based security systems
Experience in SIEM management and utilizing Elastic SIEM to correlate events
Ability to investigate emerging threats and vulnerabilities
Experience in implementing log-based and endpoint-based detection strategies
Ability to develop and customize SIEM content such as machine learning rules, signatures, and dashboards
Experience in correlating data across network, cloud, and endpoints
Ability to review and respond to alerts from SIEM and other sensors
Experience in analyzing phishing email submissions
Ability to provide effective incident response and mitigation strategies
Experience in collaborating with threat intelligence and threat-hunting teams
Ability to assist in assessing new security tools and analytical techniques
Experience in supporting cyber breach investigations
Ability to effectively communicate cyber events and findings to stakeholders

Company

ECS

twittertwitter
company-logo
ECS, started its operations way back in 1954, from the famous Anarkali Bazar of Lahore.
dateFounded in 1954
location
PK
people-size1001-5000 employees
web-link
https://shopecs.com/

Funding

Current Stage
Late Stage
Company data provided by crunchbase