C

Information Security Analyst - Incident Response & Threat Analysis

cyber focus ai United State
Remote
Apply
AI Summary

Respond to Information Security incidents in a 24x7 operations department, recommending risk mitigation and implementing security safeguards. Analyze network and host-based security logs, monitor IDS/IPS alerts, and conduct threat research. Provide technical support, perform forensic activities, and assist junior analysts in security operations.

Key Highlights
24x7 incident response operations
Network and host security log analysis
Threat research and vulnerability assessment
Firewall rule changes and SIEM monitoring
Key Responsibilities
Reviews, validates, classifies, and responds to security events
Analyzes network and host-based security logs (Firewalls, NIDS, HIDS, Syslog, etc.)
Monitors and analyzes network traffic and IDS/IPS alerts, investigating intrusion attempts
Conducts proactive threat and vulnerability research
Participates in incident reporting from initial response to triage and remediation
Performs Security Incident Event Management (SIEM) console monitoring and correlation
Evaluates new security technology for the organization
Provides skilled technical assistance in Information Security strategy and planning
Performs firewall rule changes based on submitted requests
Presents security research analysis and recommendations to the Information Security management team
Resolves Hotline issues and Abuse issues (email, phishing attacks, social engineering calls)
Continuously monitors regulatory compliance through implemented Information Security technologies
Administers, monitors and troubleshoots antivirus activities and email gateway issues
Configures and tests new IDS/IPS rules based on in-depth security analysis
Performs network and host DLP monitoring and logging
Performs application whitelisting and file integrity monitoring
Maintains and increases professional and technical knowledge through workshops and professional publications
May provide direction and support to less experienced security engineering staff
May lead moderately complex security projects as assigned
Technical Skills Required
Security Incident Response Log Analysis Threat Research Firewall Administration
Benefits & Perks
Excellent benefits
Tuition vouchers for employees and qualified family members
Recognition program

Job Description


Cyber Focus AII's mission is to help cybersecurity professionals discover cutting-edge opportunities in their field. We are not a staffing firm or agency. Cyber Focus AI does not hire for these roles—we use advanced technology to locate and verify them from actual employers.

Description And Requirements

At the University of Phoenix, we are committed to the future of work by providing a fully remote, work-from-home environment. This strategy enables us to attract top talent nationwide. Are you looking for a rewarding and fulfilling position that offers challenging work and the opportunity to make a significant impact while collaborating with a team of fun, innovative individuals? Would you prefer to work with an organization that positively contributes to the world? If so, we would love to hear from you!

Are you searching for a rewarding, fulfilling position that offers challenging work and the ability to make a big impact while working side-by-side with a team of fun, innovative people? Ideally, would you like this position to be with an organization that makes a positive contribution to the world? If so...we would love to hear from you!

About Us

University of Phoenix is a leading higher education institution founded in 1976 by Dr. John Sperling. Our mission is to improve the lives of our students, their families and future generations through higher education. Our values (which hopefully you share) are: Brave. Honest. Focused.

Our University values and embraces all team members and their unique perspectives. We fundamentally believe in fostering an environment which deeply respects, celebrates, and actively encourages a diverse workforce. We are committed to hiring - and learning from - those who share our passion to help others achieve their educational aspirations.

We offer excellent benefits, an effective recognition program, and outstanding learning and development tools, including tuition vouchers for employees and their qualified family members.

About The Position

Responds to Information Security incidents working in a 24x7 operations department. Recommends risk mitigation, implements appropriate security safeguards, tests proposed security solutions, and performs audit/compliance and forensic activities as needed. Provides support for operational security tools and technologies by responding to alerts and troubleshooting issues. Assists with a variety of duties including analysis, system administration, technology testing, incident response and training junior security operations analysts. Serves as the primary interface to the Information Technology Operations Center personnel when responding to incidents.

What You'll Do

  • Reviews, validates, classifies, and responds to security events.
  • Analyzes a variety of network and host-based security logs (Firewalls, NIDS, HIDS, Syslog, etc.).
  • Monitors and analyzes network traffic and IDS/IPS alerts, investigating intrusion attempts and performing in-depth analysis of exploits and attacks.
  • Conducts proactive threat and vulnerability research.
  • Participates in incident reporting for high priority events, from initial response to triage, to determining remediation actions and escalation paths.
  • Performs security Incident Event Management (SIEM) console monitoring and correlation.
  • Evaluates new security technology for the organization through quantitative and qualitative measures.
  • Provides skilled technical assistance in Information Security strategy and planning.
  • Performs firewall rule changes based on submitted requests.
  • Presents security research analysis and recommendations to the Information Security management team.
  • Resolves Hotline issues (issue resolution, security incident reporting) and Abuse issues (email, phishing attacks, social engineering calls).
  • Continuously monitors regulatory compliance through implemented Information Security technologies.
  • Administers, monitors and troubleshoots antivirus activities, and email gateway issues. Configures and tests new IDS/IPS rules based on in-depth security analysis.
  • Performs network and host DLP monitoring and logging.
  • Performs application whitelisting and file integrity monitoring.
  • Conducts threat and vulnerability research, intelligence and monitoring.
  • Maintains and increases professional and technical knowledge by attending workshops, reviewing professional publications, establishing personal networks and participating in professional societies.
  • May provide direction and support to less experienced security engineering staff to orient them and increase their understanding of more complex security analysis and design.
  • May lead moderately complex security projects as assigned.
  • Performs other duties as assigned or apparent.

NOTE: The primary accountabilities above are intended to describe the general content and requirements of this position and are not intended to be an exhaustive statement of duties. Incumbents may pe

#CyberFocusAI

Similar Jobs

Explore other opportunities that match your interests

Cybersecurity Analyst

Cyber Security
2h ago
Visa Sponsorship Relocation Remote
Job Type Full-time
Experience Level Not Applicable

cyber focus ai

United State

Cybersecurity Expert - AI Threat Detection and Analysis

Cyber Security
5h ago

Premium Job

Sign up is free! Login or Sign up to view full details.

•••••• •••••• ••••••
Job Type ••••••
Experience Level ••••••

Mercor

United State

Linux Specialist Engineer

Cyber Security
21h ago
Visa Sponsorship Relocation Remote
Job Type Full-time
Experience Level Mid-Senior level

REDLEO SOFTWARE INC.

United State

Subscribe our newsletter

New Things Will Always Update Regularly