| Network Security Analyst at Austin, Texas, USA |
| Email: [email protected] |
|
http://bit.ly/4ey8w48 https://jobs.nvoids.com/job_details.jsp?id=1100904&uid= Role : Network Security Analyst Location : Austin,TX(Remote) Experience : 10+ Years Need Local to Austin,TX Skills(Required): Utilize EDR/XDR platforms, including NetWitness, SentinelOne, Microsoft Defender for Endpoint, and related products, to correlate data from various network and security tools across the client network. Research, document, and present threat hunting research on cyber threat actors specifically targeting clientbusiness operations, information networks, and data. Leverage cyber threat hunting frameworks including PEAK, Sqrrl, and TaHiTI, to develop threat hunting hypotheses, determine scope, ensure repeatable processes, define outputs, and measure success in malicious behaviors detected, vulnerabilities discover. Employ threat modeling methodologies such as STRIDE, TRIKE, MITRE ATT&CK, and PASTA, to identify potential vulnerabilities, attack vectors, and threat actors specifically targeting client networks, data, and users. Develop, maintain, and update client threat hunting program documentation, including policies, SOPs, and playbooks, in accordance with industry, DIR, and client guidelines and documentation standards. CTI analyst experience within a security operations center (SOC), providing support to internal cybersecurity Incident Response teams or external cybersecurity engagements on managed security services (MSS) teams in large-scale organizations. Skills(Preferred): Experience with dynamic and static malware analysis tools and techniques, such as Trellix, IDA Pro, and Ghidra, as well as open-source tools such as Wireshark, VirusTotal, Hybrid Analysis, and Joe Sandbox. OSINT analyst experienced in utilizing brand and dark web intelligence tools such as Palo Alto XPANSE, Flashpoint, Recorded Future Intelligence Cloud, or Digital Shadows SearchLight. Utilize industry research, team meetings, collaboration with client IT and business units, in-depth understanding of clients strategic objectives, and candidates experience with NetWitness, SentinelOne, and Microsoft Defender for Endpoint. Perform scheduled and ad-hoc meetings with relevant software and other technical vendors such as NetWitness, SentinelOne, and Microsoft, to provide feedback on current EDR/XDR usage, performance, and utilization criteria. Troubleshoot, research, and resolve systemic issues in EDR/XDR tools, including NetWitness, SentinelOne, and Microsoft Defender for Endpoint, providing short-, medium- and long-term solutions to improve and maintain desired performance levels. Assist in data parsing and normalization in NetWitness, SentinelOne, and Microsoft Defender for Endpoint on data streams both existing and new, leveraging advanced knowledge of scripting languages like Python and Power. One or more of the following certifications: NetWitness Analyst, SentinelOne IR Engineer, Microsoft Security Operations Analyst Associate, GCTI, GCFA, GREM, GCIH, GDAT. -- Keywords: active directory information technology Texas http://bit.ly/4ey8w48 https://jobs.nvoids.com/job_details.jsp?id=1100904&uid= |
| [email protected] View All |
| 12:10 AM 09-Feb-24 |