Remote - Info Security Analyst

CompuGain is an Information Technology and Business Consulting firm providing project-based solutions, software solutions and professional staffing services. -Job Description:What You Will Do: Conduct host forensics, network forensics, and log analysis in support of incident response investigations Handle escalations from internal and external sources to quickly triage and respond to threats as needed Utilize our technology platforms and security controls to conduct large-scale investigations and collect and examine endpoint and networkbased evidence and artifacts Develop and present comprehensive reports for both technical, executive, and non-security stakeholder audiences Implement strategic projects and initiatives that advance the maturity and capability of the Incident Response team Mentor, train, and provide feedback to other analysts to advance their skills and enable new ways of monitoring and detecting threats Work in a flexible environment, including shift work, as required to meet business and operational needs. Requirements: 5+ years experience in the cyber security field Strong understanding of TCP/IP, DNS, SIEM, and EDR technologies (Splunk, CrowdStrike, Carbon Black, etc.) Thorough understanding of Windows environments and related security controls (IDS/IPS, AV, Proxies, Firewalls, etc.) Experience with the following: o Windows log analysis and memory forensics o Network traffic analysis and log analysis Other Qualifications: Ability to work in a flexible environment, including shift work Ability to effectively collaborate and work in a remote environment (work from home) Effectively communicate investigative findings to technical staff, executive leadership, legal counsel, and other stakeholders Develop documentation that explains technical details in a clear, concise, and repeatable manner Strong time management skills to balance multiple activities and lead junior analysts as needed Preferred: Security Certification (i.e. CISSP, CISA, Ethical Hacker, CompTIA Security +) Experience writing scripts, tools, or methodologies to enhance the investigative process Experience responding to cyber events in public cloud environments such as AWS, Azure, Google Cloud, etc. Red Team skills Thank you for your time and consideration.Regards,Praveen VaanteCompuGain12901 Worldgate Drive, Suite 510Herndon, Virginia 20170 |