JOB DESCRIPTION
Insight Global is looking for a Cyber Security Analyst to join one of North America's largest retail organizations. The analyst will perform Security Operations Center (SOC) duties, which include incident response, malware analysis, and monitoring. This role will work with the team to implement processes and practices designed to protect networks, devices, and data from malicious attack, damage, or unauthorized access.
• Triages alerts/incidents and performs deep analysis; correlates with threat intelligence tools, tactics and procedures (TTP) in indicators of compromise (IOCs) to identify the threat actor, nature of the attack, and systems or data affected.
• Prioritizes and triages alerts or issues to determine whether a real security incident is taking place and escalate incidents to Tier 3 if remediation cannot be closed within SLA time.
• Performs analysis, triage and remediation of low/medium priority alerts.
• Analyzing logs, network traffic, and other data sources to identify the source of incidents.
• Record identified vulnerabilities, create remediation tickets and track their status.
• Build internal scripts, tools, and automation processes to enhance detection and response capabilities.
• Adjusting security tools and processes, e.g. EDR alerting modifications, updating detection rules conditions, etc.
This is a 6 month contract with the possibility of extension.
REQUIRED SKILLS AND EXPERIENCE
• Bachelor’s in: Computer Science, Information Security, Cybersecurity, or a related degree.
• 3+ year experience in one or more areas: Security Operations, Incident Response, Information Security Technology, etc.
• Strong security concepts of threat categories (such as malware, phishing attacks, Defense-in-Depth, MITRE ATT&CK framework, etc.)
• Strong knowledge of M365 Security tools, Azure, AWS, GCP
• Working experiences to security tools such as SIEM (Sentinel, Splunk, Elastic etc.), EDR, firewalls, IDS/IPS, anti-spam, content management, server and network device hardening, etc.
• Strong knowledge of Windows, Linux and/or Mac OS and comfortable with looking at, understanding, and investigating Security Event logs.
• Good knowledge of networking protocols (SMTP, FTP, DNS, DHCP, etc).
• Experiences of any query language and scripting language
• SharePoint, Excel, JIRA and/or Microsoft Office skills
• Experience in using security orchestration, automation, and response tools
• Experience with query languages and scripting languages
• Experience in using security orchestration, automation, and response tools
...Communication Studies in the College of Communication and Information Sciences at The University of Alabama is seeking dynamic teachers for... ...studies courses as electives and as part of their general education. Successful candidates will be able to provide quality instruction...
Overview Model for the UCO Art Department. Poses for students as part of the creative process, serving as a visual reference for the human figure in the artwork. This is a part-time, non-exempt, hourly, and temporary position. Work times and days will vary on an as-needed...
...pay ~ Health & dental benefits starting day 1 (including coverage for vision, mental health practitioners, physiotherapy, chiropractic care, massage therapy, naturopathy, and more!)~ A paid volunteer day to give back to your community ~ Learning and development...
Job Title: Dealer Order Specialist Location: Mississauga, Ontario Job Type: Permanent Language: English, French is an asset. Compensation: Starting at $44,000/annually + full benefits. Hours: Monday to Friday (non-negotiable): 8amEST-10pm EST. Weekends:...
...principles, codes, and contract administration and the ability to coordinate across multiple disciplinesmechanical, electrical, architectural, civil, and structural. You should have proven leadership skills and experience managing subcontractors and complex deliverables....