C

Information Security Analyst I

cyber focus ai United State
Remote
Apply
AI Summary

Cyber Focus AI is not hiring for this role, but we're helping Southern New Hampshire University find a talented Information Security Analyst I. This role involves threat detection, monitoring, and incident response in a multifaceted enterprise technology ecosystem.

Key Highlights
Perform security investigations and analysis of information security events
Support incident response and containment activities
Work cross-functionally with various teams to provide technical implementations and support
Key Responsibilities
Respond and perform analysis on security alerts and incidents
Support technical investigations of complex or high-severity security threats or incidents
Coordinate information security incident response with SNHU's Information Security Incident Response Plan
Technical Skills Required
SIEM technology EDR tools Cloud security principles MITRE ATT&CK Framework Cyber Kill Chain
Benefits & Perks
100% remote work
Reliable internet connection and dedicated workspace required
Nice to Have
Splunk
Tenable
Proofpoint tools
Microsoft Defender components
Office 365 tools
PowerShell
Multiple network tools
Cloud Platforms (Azure)
Search Processing Language (SPL)
Kusto Query Language (KQL)

Job Description


Cyber Focus AII's mission is to help cybersecurity professionals discover cutting-edge opportunities in their field. We are not a staffing firm or agency. Cyber Focus AI does not hire for these roles—we use advanced technology to locate and verify them from actual employers.

Southern New Hampshire University is a team of innovators. World changers. Individuals who believe in progress with purpose. Since 1932, our people-centered strategy has defined us - and helped us grow a team that now serves over 180,000 learners worldwide.

Our mission to transform lives is made possible by talented people who bring diverse industry experience, backgrounds and skills to the university. And today, we're ready to expand our reach. All we need is you.

Make an impact - from near or far

At SNHU, you'll have the option to work remotely in the following states: Alabama, Arizona, Arkansas, Delaware, Florida, Georgia, Hawaii, Idaho, Indiana, Iowa, Kansas, Kentucky, Louisiana, Maine, Maryland, Massachusetts, Michigan, Mississippi, Missouri, Nebraska, New Hampshire, New Mexico, North Carolina, North Dakota, Ohio, Oklahoma, South Carolina, South Dakota, Tennessee, Texas, Utah, Vermont, Virginia, West Virginia, Wisconsin and Wyoming.

We ask that our remote employees have access to a reliable internet connection and a dedicated, properly equipped workspace that is free of distractions. Employees must reside in, and work from, one of the above approved states.

The opportunity

The Information Security Analyst I reports to the Director of Information Security Operations. You will be an important member of the Security Operations Center (SOC) team responsible for threat detection, monitoring, and incident response in a multifaceted enterprise technology ecosystem. You will be responsible for performing security investigations, performing analysis of information security events in a large-scale enterprise ecosystem, and assisting with information security incidents to ensure the protection of SNHU's mission-critical technology resources and institutional information.

You will work 100% remotely from any of our approved states.

What You'll Do

  • Respond and perform analysis on security alerts and incidents.
  • Support technical investigations of complex or high-severity security threats or incidents.
  • Coordinate information security incident response with SNHU's Information Security Incident Response Plan.
  • Support the incident response lifecycle and have the analytical mindset needed when it comes to escalated investigations and investigations into novel security incidents.
  • Participate in incident containment and eradication activities like endpoint isolation, malware remediation, forensic analysis, malware analysis, community member interviews, and network traffic analysis.
  • Work cross-functionally across ITS and all SNHU teams to provide support, guidance, and technical implementations where appropriate, to include triage, containment, and remediation when applicable.
  • Analyze digital evidence to identify indicators of compromise, adversary activity, root cause, incident timelines, and attack vector(s).
  • Conduct real-time monitoring of security events from multiple sources and use analytical and critical thinking skills to identify, triage, analyze, investigate, and escalate information security events and alerts.
  • Help perform investigations in complex or high-severity security threats or incidents.
  • Communicate with partners, in a non-technical manner, at all organizational levels as part of incident response and remediation activities.
  • Review and help implement standard operational processes for handling common incident types.
  • Demonstrate a deep source of ethics, integrity, and confidentiality.
  • Can remain calm and function at the highest level during a crisis.

What We're Looking For

  • 2+ years working in a security operations center (SOC), a cybersecurity operations center or on a cybersecurity incident response team.
  • Bachelor's degree
  • Professional Certification(s): CySA+, Sec+, or relevant certification.
  • Understanding of MITRE ATT&CK Framework, Cyber Kill Chain, and cloud security principles.
  • Familiarity with basic SIEM technology or EDR tools.
  • Experience with IT networking.
  • Experience with cloud security.
  • Experience with Search Processing Language (SPL) or Kusto Query Language (KQL) with an ability to create complex queries for log analysis and security monitoring.
  • Experience with enterprise security tools like Splunk, Tenable, Proofpoint tools, Microsoft Defender components, Office 365 tools, PowerShell, and multiple network tools.
  • Experience with Cloud Platforms (Azure), security controls, and assessment techniques.

Work Environment And Physical Requirements

Office Hours: Monday through Friday 8:00am - 4:30pm

Professional office environment. Sedentary work: Requires remaining in a stationary position, often standing or sitting for prolonged periods.<b

#CyberFocusAI


Similar Jobs

Explore other opportunities that match your interests

Senior Cybersecurity Program Manager

Cyber Security
18h ago
Visa Sponsorship Relocation Remote
Job Type Full-time
Experience Level Mid-Senior level

Droisys

United State

Senior Information Security Engineer

Cyber Security
1d ago
Visa Sponsorship Relocation Remote
Job Type Full-time
Experience Level Mid-Senior level

Employbridge

United State

IT Security Manager

Cyber Security
1d ago
Visa Sponsorship Relocation Remote
Job Type Contract
Experience Level Mid-Senior level

nextgenpros inc

United State

Subscribe our newsletter

New Things Will Always Update Regularly