Cyber Analyst

Description:

Position Summary:

FRDA is seeking a Cyber Intelligence Analyst to enable Security Operations Center (SOC) and Incident Response (IR) teams to proactively defend against threats. Analysts will efficiently and accurately triage alerts to reduce false positives and develop scripts that reduce manual investigation time. Clear, actionable incident documentation and non-technical updates will be routinely created to improve detection coverage and alert quality and inform senior stakeholders for their decision processes.

This role is onsite in Nashville, TN.

Requirements:

Minimum Qualifications:

• A minimum of one (1) year of experience in a Security Operations Center (SOC), incident response, or cybersecurity operations role.
• Working knowledge of security concepts:

1. Networking (TCP/IP, DNS, HTTP/S)
2. Common attack techniques (phishing, malware, lateral movement)

• Hands-on experience with security tools:

1. SIEM (e.g., Splunk, Sentinel, CrowdStrike NG-SIEM)
2. EDR/XDR platforms
3. Mimecast

• Proficiency in at least one programming/scripting language (Python strongly preferred).
• Ability to write scripts to parse data, call APIs, and automate tasks.
• Strong analytical and problem-solving skills.

Preferred Qualifications:

• Experience with log analysis and query languages such as SPL and KQL.
• Familiarity with the MITRE ATT&CK framework.
• Exposure to SOAR platforms or workflow automation tools.
• Basic understanding of cloud environments (AWS, Azure, or GCP).
• Experience with version control systems such as Git.