Cyber Security Analyst in Westport, CT at Signature Consultants

Date Posted: 6/14/2019

Job Snapshot

Job Description

Cyber Security Analyst Summary:

Signature Consultants is seeking a Cyber Security Analyst for an opportunity in Westport, CT.

Responsibilities:

  • Monitor and investigate internal and external cyber threats, leveraging best of breed technologies, through constant engagement with other world class analysts
  • Report status, define tuning requirements, and monitor functionality of security controls
  • Quickly correlate multiple data sources and apply various analytical techniques, to determine the best hypothesis for event activity
  • Constantly learn, illustrate, and apply knowledge on the latest adversarial tactics, techniques and procedures
  • Contribute to real time improvement of internally developed analytics, understanding both technical context and strategic best practices
  • Support tuning and iteration of tools used for monitoring, analysis, and forensics
  • Standardize techniques and procedures, in order to promote automation
  • Maintain awareness of latest cyber security subject matter through a demonstrated hunger and passion for the industry

Candidate Evaluation Criteria:
Candidates will be evaluated based on their ability to demonstrate a proven track record of proficiency in the following competencies:

  • SIEM (Splunk preferred) experience used in guiding investigations, utilizing custom queries, with understanding of correlation across data fields
  • Advanced working knowledge of system internals for leading operating systems
  • Ability to understand and analyze anomalies in common network protocols
  • Advanced knowledge and understanding of common adversary TTPs and the attacker kill chain
  • Advanced understanding and analysis of event logging from many different devices
  • Understanding of malware and associated behavior
  • Self-motivated, independent thinking, with a willingness to consistently challenge the status quo
  • A deep desire to persevere and win in a challenging and fast moving operational environment
  • Experience working in a dynamic and collaborative environment; able to speak about complex and technical topics with both technical and non-technical colleagues

Position Requirements:

  • Bachelor's degree or higher in Information Technology or related experience
  • Minimum 1-2 years of Information Security experience
  • Minimum 1-2 years of experience with antivirus, EDR, intrusion detection systems, firewalls, Active Directory, vulnerability assessment tools, as well as SIEM
  • Baseline understanding of domain-based Windows environments
  • Basic understanding of tactics, techniques and procedures following industry recognized frameworks such as MITRE ATT&CK
  • Excellent analytical and problem-solving skills
  • Ability to leverage both open-source and commercial tooling to resolve investigations quickly

Preferred Qualifications:

  • Scripting/Programming (Python, PowerShell, Lua, C#, etc.)
  • Familiarity with cloud technologies such as AWS, Azure, Google Cloud and associated services (SaaS, IaaS, etc.)
  • Experience with defensive security tools and operations
  • Certifications: GIAC - GCIH, GCFE


About Signature Consultants, LLC

Headquartered in Fort Lauderdale, Florida, Signature Consultants was established in 1997 with a singular focus: to provide clients and consultants with superior staffing solutions. For the ninth consecutive year, Signature was voted as one of the "Best Staffing Firms to Work For" and is now the 15th largest IT staffing firm in the United States (source: Staffing Industry Analysts). With 27 locations throughout North America, Signature annually deploys thousands of consultants to support, run, and manage their clients' technology needs. Signature offers IT staffing, consulting, managed solutions, and direct placement services. For more information on the company, please visit www.sigconsult.com.