Security Analyst - Pondurance Indianapolis, IN, USA Bookmark Share Print 358 2 8

Listing Description

A great opportunity for candidates with fewer than two years experience but who have a thirst for knowledge. Pondurance builds security leaders!

The candidate will perform both host-based and network-based forensic investigations after correlating events from the analyst console tool as part of our monitoring service. The analyst will use static and dynamic malware analysis to repeatedly identify detectable indicators of compromise, as well as other threats to enterprise environments, and work with the team to develop countermeasures.

The candidate will also utilize their experience to work with the team to resolve issues, tweak current processes, and develop/improve existing work instructions.

Qualifications:

Must have excellent oral and written communication skills

Exposure to system or network administration (Unix/Linux experience preferred)

Experience and knowledge of information security, IPv4/v6 networks, network devices, proxies, IDS/IPS, and monitoring tools

Able to demonstrate experience or exposure to the following:

Packet Capture (PCAP) analysis using Wireshark

Commercial or open source log or SIEM solutions

Event analysis, correlation, reporting, and alerting

Ability to communicate technical problems, vulnerability, and risk into a business

context understood by the client.

Ability to follow established processes and documentation. Ability to identify areas of improvement as it relates to processes and documentation.

Ability to make sound decisions and possess excellent problem solving skills.

Possess the desire to grow both technically and professionally in the information

security field.Monitor our clients' network, log and endpoint solutions to quickly identify true positives.

Work with other team members and client representatives to inform, educate and remediate issues.

Quickly and successfully triage alerts and follow established processes for escalation.

Create dashboards to surface threat information quickly and easily. Perform scheduled reviews of these dashboards.

Assist client portfolio managers to ensure processes, documentation, SLAs, etc are known, documented and followed.