Job description

The Incident Response Analyst will serve as the main point of contact for security events escalated by the Security Operations Center (SOC) and generated by other security monitoring tools.

Responsibilities:

• Prioritize security events escalated by the SOC (Tier 1) and generated by security monitoring tools
• Investigate security events using firewall logs, SIEM logs, EDR tool, and other security tools to identify root cause
• Develop security event remediation/mitigation recommendations to enhance the security posture of the organization
• Escalate security events to Tier 3 that require additional resources to resolve.
• Respond to internal reports of suspicious activity by end users
• Investigate and respond to suspicious emails identified by email protection systems or reported by end users
• Participate in threat hunting activities and investigate potential threats based on current intelligence and information gathered from security events
• Provide detailed responses to incidents within the ticketing system
• Develop new and enhance existing incident response processes and playbooks
• Create detailed incident reports if needed

Requirements:

• Experience with Splunk, PaloAlto, and Tanium. All three would be ideal but that combination may be hard to find. Candidates should have experience with a minimum of two or the tools below. Priority would be Splunk and PaloAlto FWs. If they have those two that’s a huge plus. Tanium would be even more of a plus. Symantec and Proofpoint are not required but would be a plus.
• Splunk and Splunk ES
• PaloAlto Firewalls
• Tanium Core and Tanium Threat Response
• Symantec Endpoint Protection
• Proofpoint
• Professional security certifications (Any of or similar to CISSP, GCIH, CYSA, Security+, etc.)

Job Type: Contract

Pay: $45.00 - $50.00 per hour

Schedule:

• 8 hour shift

Ability to commute/relocate:

• Pittsburgh, PA 15203: Reliably commute or planning to relocate before starting work (Required)

Education:

• Bachelor's (Preferred)

Experience:

• Incident Response Analyst: 3 years (Preferred)

Work Location: In person

colinoncars.com is the go-to platform for job seekers looking for the best job postings from around the web. With a focus on quality, the platform guarantees that all job postings are from reliable sources and are up-to-date. It also offers a variety of tools to help users find the perfect job for them, such as searching by location and filtering by industry. Furthermore, colinoncars.com provides helpful resources like resume tips and career advice to give job seekers an edge in their search. With its commitment to quality and user-friendliness, colinoncars.com is the ideal place to find your next job.