Incident Response Analyst - Shift 1- Secret cleared

Job Description

MindPoint Group is seeking an Incident Response Analyst to support threat monitoring, detection, event analysis, and incident reporting. The Security Operations Center is a 24/7 environment. The Incident Response Analyst will be responsible for monitoring enterprise networks and systems, detecting events, and reporting on threats that are directed against those systems. The Incident Response Analyst is expected to collaborate with senior analysts to assist with efficient triage and remediation of events in the incident queue. Utilizing SIEM technologies the Incident Response Analyst will provide the client with a fully comprehensive array of analytical activities in support of external threat monitoring, detection, event analysis, and incident reporting efforts to include, analysis of inbound and outbound internet traffic, suspicious e-mail messages, and cloud security logs. Incident Response Analysts will also be responsible for the generation of client reports both scheduled and ad hoc.

The Incident Response Analyst preferably has knowledge of or limited experience with the following tools (this is not a complete inventory):

• SIEM
• Email/Phishing
• Major Cloud Providers (AWS, Azure, GPC)
• AV/EDR
• Networking Equipment
• Endpoint Logging (Windows, Linux)

• Provide support for complex computer network exploitation and defense techniques
• Deter, identify, and investigatecomputer and network intrusions
• Provideincident response and remediation support
• Performcomprehensive computer surveillance/monitoring
• Providetechnical support for continuous monitoring, computer exploitation, and reconnaissance
• Researchand maintainproficiency in open and closed source computer exploitation TTP’s
• Performresearch into emerging threat sources.

Qualifications

• Active Secret clearance required
• Must be available for the Shift 1time: (6AM- 2PM)
• Minimum of two (2) years of general work experience and one (1) year of relevant experience in functional responsibility preferred
• Bachelor’s Degree, or an equivalent combination of formal education and experience
• Must have strong analytical and organizational skills
• Must have concise writing skills
• Experience working a SOC and doing incident response is highly preferred
• Desirable certifications: Security+, Network+, CySA+, CASP, CEH, GSEC, or other relevant IT security certifications

Additional Information

• All your information will be kept confidential according to EEO guidelines
• Equal Opportunity Employer Veterans/Disabled