Job Description
One of Myticas Consulting's direct clients is seeking a Cybersecurity Analyst for a 100% Remote contract position.
Duration: 12+ months contract (possible further extension).
NOTE: Must be a US Citizen.
Job Summary
One of our direct clients Cyber Security Program Office (CSPO) is looking for a Sr Cybersecurity Analyst who will play an important role to continuously monitor, triage alerts and tickets, investigate suspicious activity or poor configurations, and orchestrate responses to protect the client’s systems and data.
Typical Tasks May Include
- Resetting user passwords for cause (e.g., when they have been identified as being suspected compromised or ‘known compromised’).
- Working with service owners to reset service account passwords for various reasons.
- Ensuring authorizers are designated for in-scope accounts.
- Analyzing usage patterns for accounts (e.g., service, administrative) to identify inactive accounts or inappropriate account use.
- Reviewing approval requests for various new access or accounts.
- Triaging unusual access requests (e.g., access from 3rd party VPN providers, impossible travel) or phishing reports.
- Evaluate endpoint and detection response (EDR) installation and coverage.
- Identify systems without EDR and provide to IT teams for remediation.
- Monitoring external attack surface for unapproved systems, undocumented systems, and newly disclosed vulnerabilities.
- Reviewing systems with existing public access to ensure requirements for these systems are followed (e.g., event logging, multifactor authentication).
- Attend online/Teams meetings with team and others as appropriate.
- Work with team to provide status on current task, suggest improvements, discuss implementation, etc.
- 1–3 years in a SOC, cybersecurity ‘blue team’, or closely related role.
- 3–5 years relevant experience including investigations, data analysis, and detection tuning.
- Comfort using Splunk Processing Language (SPL), CrowdStrike EDR, and ServiceNow.
- Strong grasp of TCP/IP, OSI model, and common protocols (HTTP, DNS, SMTP). Windows/Linux/macOS fundamentals; Active Directory/Azure AD concepts; basic cloud logging.
- Experience with at least one SIEM and one EDR/XDR platform.
- Experience with ticketing/case management.
- Ability to craft queries using common languages; comfort with regex, JSON and APIs; basic scripting in Python/PowerShell/Bash.
- Excellent analytical, problem-solving, and communication skills both with stakeholders, peers, and internal customers; able to operate under pressure in a shift or on-call environment.