Senior Associate Information Security Analyst-Job ID P133413

The Discover Security Analytics & Incident Detection team is looking for new and qualified security analysts to join our ranks. Our team serves alongside other teams in Information Security as experts in the detection and analysis of all technology-related security incidents. We employ a multitude of enterprise-grade security solutions to achieve our goals. Our primary mission is the timely and accurate identification of incidents, mastery of the technologies and information we analyze, maintaining expert-level knowledge of detection tools and techniques, and proper escalation/hand-off of incidents for response and containment.Were looking for talented, self-motivated professionals who have a strong passion for information security-- and a burning desire to learn. Were interested in people who enjoy being challenged on a daily basis to stay one step ahead of an ever-changing landscape of threats and adversaries. Were also looking for individuals that are interested in working both collaboratively and independently to hunt down and identify anomalous and malicious activity, wherever it may be. Whether youre a seasoned information security professional or new to the field, were looking for new team members to join us in guarding our enterprise as the last and ultimate line of defense.Responsibilities include:

• Building and maintaining custom security detection logic to analyze and correlate information to produce meaningful, actionable results
• Monitoring of events & alerts from a multitude of technologies to detect malicious activity
• Detailed analysis using a variety of tools and techniques to investigate, navigate, correlate and understand security incidents to the fullest extent of the data available
• Tuning of rules, filters and policies for detection-related security technologies to improve accuracy and visibility
• Data mining of log sources to uncover and investigate anomalous activity, along with related items of interest
• Maintaining documentation of logic, rules, policies, and procedures
• Proper escalation and hand-off of security incidents for containment and remediation

Qualifications

- Working knowledge of common operating systems (Windows, Linux, etc.) and basic endpoint security principles
- Knowledge of (or a strong desire to learn) common networking services and protocols (TCP/IP, SSH, FTP, DNS, DHCP, SMTP, SSL, etc.)
- Rudimentary understanding of (or a strong desire to learn) common security technologies (IDS, Firewall, SIEM, etc.)
- Exceptional organizational abilities and attention to detail
- The ability to think creatively to find elegant solutions to complex problems
- Excellent verbal and written communication skills
- The desire to work both independently and collaboratively with a larger team
- A willingness to be challenged along with a strong appetite for learning
- The ability to work in a 24x7 shift-based operation
- The flexibility to adjust shift schedule based on the needs of the team
- 1-3 years of experience in Information Security, Incident Response, etc. (or related field)
- Prior experience detecting, analyzing and/or responding to security incidents
- Demonstrated ability to analyze and correlate information from a wide variety of enterprise technologies
- Hands-on experience with common security technologies (IDS, Firewall, SIEM, etc.)
- Knowledge of common security analysis tools & techniques
- Understanding of common security threats, attack vectors, vulnerabilities and exploits
- Knowledge of data science, data visualization, mathematics, and/or statistics
- Programming experience (Python, Perl, etc.)
- Knowledge of regular expressions

Preferred Certifications:

CompTIA Network+/Security+, CISSP, GIAC (GCIA, GCIH, GSEC, GPEN, GREM, etc.), OSCP, CEH, etc.

Education:

Bachelors Degree in Computer Science, Information Security or related/equivalent educational or work experience We are an Equal Opportunity Employer and do not discriminate against applicants due to race, ethnicity, gender, veteran status, or on the basis of disability or any other federal, state or local protected class.