Key skills
Cyber SecurityDNSSplunk
About this role
Role Overview
- Utilizes SIEM/XDR/EDR tools (AlienVault USMA/LevelBlue, LogRhythm, Microsoft Sentinel, Splunk CrowdStrike, etc.) to monitor alerts and security events of client networks and systems.
- Identifies, analyzes, and responds to security incidents as they occur.
- Collaborates and leverages their cybersecurity knowledge working alongside a team of skilled analysts to address potential threats within a 24x7 SOC.
- Crafts escalations to clients for potential threats that include value-added and root cause analysis with recommendations for remediation.
- Continually improves cybersecurity and information security expertise.
- Performs other related duties as assigned.
Requirements
- Bachelor’s degree in Information Technology, Cybersecurity, or related field is preferred
- Basic knowledge of the following content areas is preferred: IP addresses and subnetting
- Common ports and services
- IPv4 and IPv6 basic packet structure
- HTTP methods (GET and POST)
- DNS resolution
- SSL / TLS and certificates
- Common malware strategies (recon, exploit, callback)
Tech Stack
- Cyber Security
- DNS
- Splunk
Benefits
- Health insurance
- Flexible work arrangements
- Professional development opportunities