Security Analyst II
REMOTE (McLean, VA)Schedule: 7:00 am - 5:00 pm ET4x10 Shift (Wednesday - Saturday)** shift work and holiday work are required as part of a 24/7/365 SOC **
About the Role:
MUST have a minimum of 1-2 years of experience with one or more of the following:
- Microsoft Defender (minimum of 1 year)
- CrowdStrike (minimum of 2 years)
- SentinelOne (minimum of 2 years)
MUST have a minimum of 2 years experience in a SOC Analyst position.
About the Role
Do you want to be on the frontline of the cyber war? Do you want to influence real change? Do you want to be part of the solution? Then join Pondurance in ensuring every organization is able to detect and respond to cyber threats – regardless of size, industry or current in-house capabilities.As a Security Analyst II, you will help mitigate our clients’ risk of attack and immediately contain threats that do penetrate their defenses. You’ll provide insight on cyber threats, evaluate and report on network traffic and system logs as well as assist in Incident Detection and Response and Vulnerability Management for our Threat Management Solution clients.
Responsibilities:
- Analyze intrusions, detect incidents, and assist in response
- Seek out attacker presence on client’s networks and logs with advanced threat hunting
- Identify attack vectors, threat tactics and attacker techniques
- Engage with clients to understand their security needs and wants
- Regularly assist with reviews and provide reports on observed threats
- Research new threats to enterprise environments
- Analyze IOCs and work with the team to develop countermeasures
- Collaborate with the team to resolve issues, tweak current processes, and revamp existing SOPs
- Shift work and holiday work are required as part of a 24/7/365 SOC
Technologies:
- Demonstrated experience with all of the following:
- Packet Capture (PCAP) analysis using Wireshark
- Familiarity with commercial or open source log or SIEM solutions
- Event analysis, correlation, reporting, and alerting
- Reverse engineering malware and host-based analysis/detection
- Service discovery tools such as nmap
- Vulnerability scanning tools such as Nessus, Nexpose, and/or Qualys
- Experience with system or network administration (Unix/Linux experience preferred)
- Experience and knowledge of information security, IPv4/v6 networks, network devices, proxies, and IDS/IPS tools and applications
Knowledge & Skills:
- Effective in evaluating information for reliability, validity, and securing network
- communications
- Analytical Thinking: Break down the fundamental components of a problem or situation, examine the relationship between them, verify all pertinent facts and draw an appropriate conclusion.
- Applied Technical Thinking: Able to apply specialized, theoretical knowledge to efficient operational uses.
- Capacity for Synthesis: Able to bring together disparate elements to create a coherent entity or a big-picture overview in order to gain a new perspective.
- Flexibility: Operate efficiently in constantly evolving environments and, when confronted with unforeseen circumstances, readjust priorities to accommodate change.
- Problem Solving: Able to identify problems, determine cause and effect, and propose solutions using new approaches or an innovative point of view.
- Sense of Urgency: Be prone to react quickly to outside demands, get onto things right away and get things done fast
Who we are:
At Pondurance we embrace, educate, and protect people by helping make our world a better and safer place. We believe in inviting good people into our company who are driven to become great! Every person at Pondurance is encouraged to focus and grow in their individual areas of interest, passion, and career path. We have accessible leaders as Mentors who believe “None of us are as smart as all of us” (R. Pelletier). We believe everyone has the freedom to be themselves, especially at work and so we embrace, support, and celebrate each other.
Each one of us influences our company’s direction through speaking up,
you have a voice
and we want you to use it.
Do you want to be a part of something different? Do you want to influence real change? Do you want to be part of the solution? Then join us in redefining the security and cyber risk landscape.
What We Offer:
The opportunity to apply your expertise, take on new challenges, and help customers address their biggest security objectives.An inclusive culture of teamwork that embraces the diversity of our people and communities in which we work.Some of the corporate benefits (there are more) for full-time employees include:
- Medical, dental, vision, disability, FSA, HSA, life and AD&D insurance, 401(k) Plan.
- Time off: PTO, sick, holiday, & parental leave details are available
- Money: We provide competitive compensation packages based on the market and your overall credentials.
You will likely be based out of one of our current locations: McLean, VA or Indianapolis, IN.To promote a healthy and safe work community we require background and drug screenings as part of our hiring process. Details of our process will be provided upon request. We are an equal opportunity employer focused on celebrating diversity and inclusion. We believe that each individual should be treated equally without regard to race, color, identity, national origin, protected veteran status, religion, sex including sexual orientation and gender identity, disability, or any other characteristic protected by law.