L1 Security Analyst jobs in United States
cer-icon
Apply on Employer Site
company-logo

Kobalt.io · 14 hours ago

L1 Security Analyst

positionUnited States
timeFull-time
remoteRemote
seniorityEntry, Mid Level
date1+ years exp

Kobalt.io is dedicated to solving cybersecurity challenges for small to medium businesses. The L1 Security Analyst will contribute to the Security Operations Centre by investigating alerts, managing tickets, and running vulnerability scans to enhance client security.

Cloud SecurityCyber SecurityEnterpriseInformation Technology

Responsibilities

Investigations: Investigate alerts, analyze the evidence, document findings and raise security incidents as required. Prioritization of simultaneous events
Ticket Management: Create, manage, resolve and transfer tickets per ITSM best practices
Escalations: Address or escalate security incidents, customer enquiries and tool set issues. Escalate, as appropriate, to the customer, Sr L1 analysts, or L2 analysts
Scans: Run, interpret and communicate the results from periodic vulnerability scans of customer environments
Reports: Create regular reports for customers that include the interpretation of event patterns and suggest improvements to their security posture
Collaboration: Work with team members to assist with improvements, discovery and production of creative and insightful security use-cases
Participation in a 24/7 shift rotation is required

Qualification

SIEM toolsMITRE ATT&CK frameworkIncident handlingCloud environmentsOn-Premise infrastructureITIL FoundationsNetwork protocolsCryptographic algorithmsCommunication skillsTeam playerAdaptability

Required

Diploma or Degree in cybersecurity or a related field and/or equivalent experience
1 - 3 years of on-the-job experience in a Security Operations Center (SOC)
Experience working with a SIEM tool such as Sumo Logic, Splunk and Azure Sentinel
Familiar with the MITRE ATT&CK framework
Understanding of On-Premise infrastructure and environments
Familiarity with both cloud-based environments, such as AWS, Azure, or GCP
Understand the incident handling process and ticket handling
Excellent written and verbal communication skills
Able to explain cybersecurity incidents or concepts to technical and non-technical audiences
Strong and collaborative team player
Adaptive and able to pick up new concepts quickly
Participation in a 24/7 shift rotation is required

Preferred

ITIL (v3 or v4) Foundations
Experience as a system, network or firewall administrator
Working knowledge of the OSI network protocol stack, including major protocols such as ICMP, TCP, UDP, SMTP, HTTP, FTP, SNMP and SSH
Understanding of popular cryptographic algorithms and protocols such as AES, MD5, SHA, SSL/TLS, etc

Company

Kobalt.io

twittertwittertwitter
company-logo
Kobalt.io is a rapidly growing company that manages all aspects of cyber security programs for small and medium-sized, cloud-native businesses.
dateFounded in 2018
location
Vancouver, British Columbia, CAN
people-size11-50 employees
web-link
https://kobalt.io

Funding

Current Stage
Early Stage
Total Funding
$1.67M
2020-10-31Seed· $0.92M
2019-05-01Pre Seed· $0.74M

Leadership Team

leader-logo
Michael Argast
Co-founder and CEO at Kobalt
linkedin

Recent News

Beta News
Organizations fix under half of exploitable vulnerabilities
2025-04-15
Company data provided by crunchbase