Job Description

DirectDefense is at the forefront of managed security services, renowned for its elite Security Operations team. Our Security Analysts are not just passive monitors; they are active hunters of malicious activities, providing around-the-clock, actionable remediation guidance. This role places you at the heart of a revolution in managed security, working alongside brilliant minds to detect, track, and eliminate cyber threats. Join us and be instrumental in shaping the next generation of our Security Operations Center.

As a Senior Security Analyst, you will leverage your extensive cybersecurity expertise to analyze complex user behavior, identify potential threats, and craft effective remediation strategies. You will engage in hands-on activities to secure client environments across diverse industries, contributing to both the development and execution of our cutting-edge security measures.

At DirectDefense, you will be part of a dynamic team that thrives on innovation and excellence in cybersecurity. We offer a collaborative environment where your contributions are valued and your professional growth is supported. Join us to make a significant impact in the field of managed security and advance your career with a leader in the industry.

KEY RESPONSIBILITIES:

Behavioral Analysis & Threat Detection:

• Perform in-depth analysis of user behavior, logs, and alerts using a variety of technologies including NGAV, EDR, Firewall, IDS/IPS, Web Proxy, and other security tools.
• Develop and refine methods to detect abnormal or malicious activities, integrating findings into actionable threat detection strategies.

Incident Monitoring & Response:

• Monitor Security Information and Event Management (SIEM) systems and investigate alarms, triaging incidents to provide swift and effective responses.
• Handle client support requests related to security incidents, ensuring comprehensive investigations and timely resolutions.

Incident Documentation & Reporting:

• Participate in the documentation of Incident Response (IR) activities, maintaining accurate records of investigations, actions taken, and outcomes.
• Prepare detailed reports on security threats, metrics, and defense effectiveness tailored to various client audiences.

SIEM Development & Tuning:

• Collaborate on the development and fine-tuning of new SIEM detection capabilities, enhancing the overall effectiveness of our security monitoring processes.
• Provide input for the configuration and optimization of SIEM rules, filters, and alerts.

Client Communication & Engagement:

• Provide clear and concise communications to clients regarding threat analysis, incident responses, and security recommendations.
• Deliver presentations and reports to client stakeholders, understandably articulating complex security concepts.

Continuous Improvement & Knowledge Sharing:

• Stay current with the latest trends and developments in cybersecurity, integrating new knowledge into daily practices.
• Share insights and knowledge with team members to foster a culture of continuous improvement and collective expertise.

QUALIFICATIONS:

Experience & Knowledge:

• Minimum of 5+ years of experience in cybersecurity, risk management, security operations, or network operations.
• Deep understanding of attacker behavior, motivations, and defense architectures.
• Hands-on experience with anti-malware tools, endpoint telemetry, and Endpoint Detection and Response (EDR) products such as CrowdStrike Falcon Insight.

Technical Proficiency:

• Expertise in enterprise security technologies including SIEM, next-generation firewalls, and vulnerability scanning tools.
• Solid grasp of operating systems (Windows, Linux, macOS), with proficiency in their command-line interfaces and system internals.
• Competence in scripting or programming using languages like Python, Go, or similar for security automation and tool development.

Certifications:

• Certified Information Systems Security Professional (CISSP)
• Certified Information Security Manager (CISM)
• Certified Ethical Hacker (CEH)
• GIAC Certified Incident Handler (GCIH)
• CompTIA Security+

Documentation & Reporting:

• Experience in developing technical documentation, including security reports, investigation findings, and procedural guides.
• Ability to translate complex technical data into clear and actionable documentation for various stakeholders.

Incident Response Process:

• Familiarity with the incident response lifecycle: preparation, identification, containment, eradication, recovery, and lessons learned.
• Experience in conducting root cause analysis and post-incident reviews.
• Knowledge of digital forensics and evidence handling.

Additional Skills:

• Strong analytical and problem-solving abilities.
• Effective communication and interpersonal skills.
• Ability to work under pressure and meet tight deadlines.
• Attention to detail and accuracy in work.

Salary range : $92,429.00 - $120,958

Bonus: Up to 10% annual bonus

Benefits include:

• 401(k)
• AD&D Insurance
• Dental Insurance
• Disability insurance
• Health insurance
• Life insurance
• Vision insurance
• Flex PTO program
• Paid certification and continuing education

Career Development:

• Opportunities for professional growth and development within the company.
• Access to training programs and certifications.
• Participation in industry conferences and workshops.

Application Instructions: To apply, please submit your resume and cover letter through our online application portal. Applications will be reviewed on a rolling basis until the position is filled.

A little about DirectDefense

Since coming together in 2011 to form DirectDefense, our team has been committed to offering Cybersecurity defense strategies that are unmatched in the industry. Whether we are performing assessments of networks, platforms, and applications or applying managed services to improve your organization’s security posture, we are focused on providing world-class services that don’t just work–they work for you.

OUR MISSION

We establish partnerships with our clients based on trust and results. We leverage our deep industry knowledge and expertise to identify and remediate blind spots in your security program, provide meaningful visibility of your entire enterprise, and align your organization with security best practices and compliance standards.

OUR VISION

We aim to secure organizations across all industries against advanced threats and attacks in today’s world. Acting in partnership with organizations, we will provide unmatched information security services designed to improve your overall security posture, close gaps, and track vulnerabilities on an ongoing basis through continued education and support.

As required by Colorado law under the Equal Pay for Equal Work Act, DirectDefense provides a reasonable range of compensation for roles that may be hired in Colorado. Actual compensation is influenced by a wide array of factors including but not limited to skill set, level of experience, and specific office location. For the state of Colorado only, the range of starting pay for this role is $92,429 - $120,158 per year with an annual bonus.

Job Tags

Similar Jobs