Job Information
MindPoint Group Full-time Incident Response Analyst - Weekend Shift Lead (Tier 2) in Austin, Texas
Full-time Incident Response Analyst - Weekend Shift Lead (Tier 2)
Department: SOC
Location:
MindPoint Group is searching for a Incident Response Analyst to lead our weekend shift team. This role will support threat monitoring, detection, event analysis, and incident reporting. The Security Operations Center is a 24/7 environment. You will be responsible for monitoring enterprise networks and systems, detecting events, and reporting on any and all threats that are directed against those systems regardless of their classification level or type.
Typically, the client-s sensor grid acquires millions of events per day and events are analyzed and categorized in accordance with the Cyber Security Incident Response Plan. The Incident Response Analyst will provide the client with a fully comprehensive array of analytical activities in support of external threat monitoring, detection, event analysis, and incident reporting efforts including presentation reviews, internal and external threat reporting, analysis of inbound and outbound public internet traffic, suspicious e-mail messages, administering access request to specific public sites, communicating and coordinating the characterization of events and the response.
Responsibilities:
As Team Lead:
Serve as the first point of escalation for triage of complicated alerts and investigation of incidents on your shift
Provide mentorship and guidance to help other analysts learn and grow
Manage watch schedules to ensure adequate on site and remote watch floor coverage
Develop reports and deliverables as needed
Escalate night shift issues to SOC Manager, including but not limited to analyst performance or behavior issues, tool or system degradation or outages, and concerning alerts or incidents per the escalation plan
Provide support for complex computer network exploitation and defense techniques to include deterring, identifying, and investigating computer and network intrusions; providing incident response and remediation support
Perform comprehensive computer surveillance/monitoring, identifying vulnerabilities; develop secure network designs and protection strategies, and conduct audits of information security infrastructure
Provide technical support for forensics services to include evidence seizure, computer forensic analysis, and data recovery, in support of computer crime investigation
Research and maintain proficiency in open and closed-source computer exploitation tools, attack techniques, procedures, and trends
Perform research into emerging threat sources and develops threat profiles
Provide technical support for a comprehensive risk management program identifying mission-critical processes and systems; current and projected threats; and system vulnerabilities
Required:
Minimum of six (6) years of cybersecurity experience with at least three (3) years in a SOC watch floor analyst or IR role
CISSP or CEH certification; additional experience, formal training, certifications, and/or education may be substitutable at the client's discretion
Experience in some of the following SOC tools and technologies: IDS/IPS, EDR, SIEM, XPS, FireEye, RSA Netwitness, Sourcefire (Snort), Silo, etc
Strong analytical and organizational skills
Strong verbal and written communication skills
Experience with MS Word and other MS Office applications
Desired:
Bachelor-s Degree or higher in Cybersecurity or related is preferred
Additional Cybersecurity training and/or certifications are preferred
Location This is a hybrid role with expectations of being on the client site a minimum 2 nights on site.
Shift: Tier 2 nights, Friday night shift (12 hours, on site), Saturday night shift (12 hours, on site), plus 2 other nights during the week. Minimum 2 nights on site at DOJ.
Clearance: Applicable US Government Clearance required
MindPoint Group
- MindPoint Group Jobs