Security Monitoring Analyst I

Summary

The Security Monitoring Analyst (SMA) is a skilled technical support engineer with 2 years of experience in IT security. This position requires practical experience with security-related components of ESET business products.

Job Description

DUTIES AND RESPONSIBILITIES

• Respond to and solve basic to advanced security support related tickets in accordance with the defined procedures and if needed assist L3 to solve the ticket in question
• Schedule and work on remote sessions with customers
• Perform security optimization of the threat monitoring system in the assigned environment
• Perform security monitoring and hunting services for assigned customers or environments
• Perform basic analysis of security threats and evaluation of the data about potential threats
• Become familiar with all supported ESET business products (including EEI) and their inner workings (mainly configuration, detection, blocking, protection layers, cleaning-oriented features, etc.) as well as ESET security services offering, familiarize with ESET business products before their release
• Adhere to defined processes and communication standards while providing support to customers
• Prepare reports and communicate incidents to the customer
• Provide consultations to the customer and offer cyber security recommendations
• Demonstrate an exceptional standard of quality of work
• Maintains and consistently demonstrates knowledge of company guidelines, processes, practices, and procedures; specifically, knowledge of ESET service delivery processes
• Respond to and report questions, concerns, and requests on a 24x7 basis
• With support of your Manager, persistently look for education opportunities in the field of IT security and undergo advanced IT security trainings
• During downtime, this role transitions to assist Business Technical Support
  
  

KEY TECHNICAL SKILLS:

• Experience with tools for communication with customer and its environment (ticketing system, remote access, etc.)
• Advanced understanding of operating systems (Windows, macOS, Linux), including concept of file system, processes, services, registry, scheduling, etc.
• Advanced understanding of ESET business products, logs and log collection, and protection layers
• Understanding of and intent to expand knowledge of malware: attack vectors (malicious links, email attachments, downloads, drive-by, exploits, open RDP, social engineering, etc.)
• Understanding of and intent to expand knowledge of malware: threat types (phishing, ransomware, financially motivated malware, spyware, backdoor, botnet, etc.)
• Understanding of malware detection: false negative and false positive
• Understanding of cyber-attack anatomy and ability to identify attacks
• Understanding of security hygiene concepts
• Understanding of concept of IOCs, TTPs, files, file types, file hashes, URLs, domains, Ips
• Advanced understanding of computer security incident handling
• Advanced understanding of networking (IP address, port, protocol, MAC address, etc.
• Ability to keep up with trends and new developments in cyber security field (e.g. new types of attacks, new protection measures in ESET business products or in general, etc.)
• Ability to do analysis of issues reported by customers and provide solutions based on previous experience or known/defined procedures or tutorials.
• Ability to reproduce problems on controlled environment and do basic root cause analysis
• Experience with forensic tools (data collection)
• Ability to perform basic forensic analysis based on previous experience or known/defined procedures or tutorials
• Ability to perform basic DFIR assistance based on previous experience or known/defined procedures or tutorials
• Experience as SOC analyst or with security monitoring of computer environment, analysis of suspicious behavior and evaluating outputs from systems for security monitoring (EDR, SIEM, etc.) is an advantage
  
  

PERFORMANCE MEASURES:

• Must keep scheduled meetings, calls and follow-up requests
• Must provide solution-oriented responses to customers in adherence with established SLAs
• Must be willing to travel and work alongside network administrators and/or for training and developmental purposes
• Must provide in-depth root-cause analysis of Product Technical issues
• Must facilitate knowledge transfer to the other Service team members in alignment with Technical Support Management team learning objectives
• Must be available for 24/7 on-call duties and after-hours calls to resolve escalated security incidents
  
  

COMPETENCIES:

• Monitors and checks work to meet quality and process/workflow standards; demonstrates a high level of care and thoroughness; checks work to ensure completeness and accuracy, communicates effectively to adjacent departments and roles
• Maintains effective performance under pressure; handling stress in a manner that is acceptable to others and to the organization
• Emphasizes customer success through effective communication of security incidents and news to external and internal customers
  
  

JOB FIT:

• Motivated and able to consistently complete tasks with daily/weekly/monthly deadlines
  
  

KEY TECHNICAL SKILLS, QUALIFICATIONS AND EDUCATION:

• Experience: 2 years of experience in IT security and/or experience as SOC analyst
• Education: BA or BS in Computer Science, Engineering or equivalent Required. May be substituted with relevant work experience and technical certifications such as CEH, CCE, CRISC, CISM, CISSP, CompTIA Network , Security , MTA, MCSA, MCSE, or GIAC (GSEC, GCIH) Certifications.
  
  

Benefits

Health & well-being

• Cigna Medical Plan
• Cigna Dental Plan
• EyeMed Vision Plan
• Reliance Standard Life Insurance
• Reliance Standard Long Term Disability Plan
• HealthJoy Employee Assistance Program
• Cigna Supplemental Insurance
• Lifestyle Spending Account
• Bi-Weekly Mediation Series
• On-site Gym and shower facilities
  
  

Family

• Volunteer Day off
• Paid Time off
• Tuition Reimbursement
• Birthing Parent Match
• Pet Insurance
  
  

Office

• Recreational Zone
• Coffee & Snacks
• Parking Benefit
  
  

Other

• Benefit Hub - Discounts on travel, cars, electronics, etc…
• 401(k) retirement savings
• ESET's Charitable Contributions Program
• Referral Program
  
  

Primary location

Raleigh

Additional locations

Time type

Full time

Get to know us:

Our office is primarily Sales, Marketing and Technical Support oriented.

We don’t just show up ready for work; we come in ready to make a difference. Our employees are a diverse group of individuals with a wide range of backgrounds and interests. We share these common goals:

• Delivering a safer, better internet for our customers
• Donating time, expertise and resources to charity
• Supporting company-wide sustainability and green initiatives
• Helping to educate the workforce of the future.
  
  

At ESET, work-life balance is an important topic. In our San Diego office we find creativity, commitment and innovation thrive in an atmosphere where employees are encouraged to relax, recharge and have fun!

Established: 1999

At ESET, diversity, equity, and inclusion (DEI) are integral to our corporate culture. We believe in creating a respectful environment, where everyone feels valued and respected, welcoming applications from individuals of all backgrounds, including race, gender, age, religion, disability, and sexual orientation.