Cyderes · 3 hours ago

Principal Security Analyst

United States

Full-time

Remote

Senior Level, Lead/Staff

8+ years exp

Maximize your interview chances

ComputerNetwork Security

Actively Hiring

Insider Connection @Cyderes

Discover valuable connections within the company who might provide insights and potential referrals.
Get 3x more responses when you reach out via email instead of LinkedIn.

Responsibilities

Take ownership of positive security outcomes for a designated set of customers.

Provide overall guidance, instruction, mentorship, and leadership to other Security Analysts.

Drive customer cadence calls and act as trusted advisor to customers.

Develop custom dashboards and reports for regular customer status updates.

Ensure quality of SOC deliverables to the Principal Analyst’s customers.

Perform Threat Hunting on customer networks to detect, isolate threats and provide recommendations.

Provide proactive security investigation and searches on client environment to detect malicious activities.

Expert-level Strategic Analysis of customer security posture, risk level, and security data.

Update documentation and runbooks to ensure repeatable analysis.

Advise Detection Engineering, Automation Engineering, and Telemetry Engineering on technology improvements to close gaps in customer security posture.

Document and communicate recommendations and guidelines based on results of analysis.

Maintain current knowledge and understanding of threat landscape.

Qualification

Find out how your skills align with this job's requirements. If anything seems off, you can easily click on the tags to select or unselect skills to reflect your actual expertise.

IT security experienceEndpoint DetectionResponseSIEM platformMITRE ATT&CK frameworkSystem AdministrationNetworking conceptsIndustry certificationScripting experienceSOAR platform

Required

8 or more years of progressing/in-depth IT security experience. Practical experience in a senior role within the last three years and demonstrated ability to carry out the functions of the job.

System Administration experience (Windows, Unix/Linux, Mac)

Advanced understanding of networking concepts and ability to analyze network artifacts.

Demonstrated experience in using Endpoint Detection and Response software (SentinelOne, Crowdstrike, Defender ETC.)

Advanced knowledge of at least one leading SIEM platform (Sentinel, Splunk, Elastic, IBM Qradar, Chronicle etc.)

Possess at least one industry certification Sec+, CEH, SANS Certification (e.g. GCIH, GCIA, GSEC, GMON), OSCP etc. or working towards a related certification.

Prior knowledge of SOAR platform such as Siemplify, Forti soar etc.

Basic scripting or development experience in one of the following languages: Python, JavaScript, PowerShell, bash, etc.

Exceptional written and verbal communication skills.

Demonstrated expert knowledge of the MITRE ATT&CK framework.