What are the responsibilities and job description for the Security Analyst position at CYNET SYSTEMS?
Job Description:
Pay Range: $30.88hr - $34.20hr
Threat Intelligence Research:
Pay Range: $30.88hr - $34.20hr
Threat Intelligence Research:
- Monitor and analyze threat intelligence feeds to identify emerging threats relevant to the organization.
- Document findings, such as new attack methods or vulnerabilities, and share with the team.
- Use open-source intelligence (OSINT) tools to gather data on potential risks and adversaries.
- Conduct proactive searches for suspicious behavior in network and endpoint activity using provided tools and playbooks.
- Collaborate with senior analysts to refine and test detection rules (e.g., SIEM queries or Defender for Endpoint rules).
- Document hunting methodologies and findings to support continuous improvement.
- Review and interpret logs from firewalls, endpoints, and servers to identify indicators of compromise (IOCs).
- Escalate findings, such as anomalous IP addresses or unauthorized access attempts, to senior analysts.
- Maintain a log of recurring patterns or anomalies for long-term tracking and analysis.
- Assist in initial triage of security incidents by following response frameworks (e.g., NIST, MITRE Telecommunication&CK).
- Gather and analyze relevant evidence, such as logs or alert data, to determine the scope and severity of incidents.
- Document findings during incidents and contribute to containment and remediation efforts.
- Create clear, detailed reports, including incident reports, after-action reviews, and process documentation.
- Draft training materials or guides to help improve organizational awareness and readiness.
- Regularly update and organize documentation to ensure accuracy and accessibility for team use.
- Problem-Solving: Analyze data, identify anomalies, and recommend solutions.
- Attention to Detail: Ensure accurate analysis and configuration for effective security measures.
- Vulnerability Management: Analyze reports, prioritize patching, understand NIST best practices.
- Threat Hunting & Intelligence: Utilize threat feeds, investigate suspicious activity, stay current on cyber threats.
- Security Awareness Training: Develop & deliver training, assess employee awareness through simulations.
- Security Automation: Leverage SCCM, GPO, PowerShell for patch deployment.
- Endpoint Security (Defender for Endpoint): Configure policies, analyze alerts, manage endpoint protection.
- Incident Response: Identify and escalate potential security threats.
- Communication: Deliver reports on security posture and propose mitigation strategies.
- Scripting: Automate tasks beyond SCCM, GPO, and PowerShell for increased efficiency.
- Digital Forensics: Investigate security incidents and collect evidence for deeper analysis.
- Network Security: Understand network protocols and firewalls to strengthen overall security posture.
- Cloud Security: As cloud adoption grows, understanding cloud-specific security solutions becomes valuable.
- A high school diploma is required, a bachelor's degree in information technology systems, computer science, cybersecurity, or a related field is preferred.
- At least 1 year server or network administration experience is required.
- 1 years of experience in a security focused role is preferred.
- Relevant experience may be substituted for the degree on a year-for-year basis.
- GIAC Security Essentials (GSEC).
- Security (CompTIA).
- Network (CompTIA).
- GIAC Incident Handler (GCIH).
Salary : $31 - $34
