Senior Analyst, MDR
CFC
CloudCyber SecuritySplunkSQL
Job Level
Senior
Tech Stack
CloudCyber SecuritySplunkSQL
About the role
- Senior analyst operating an innovative managed detection and response (MDR) service
- Investigate and remediate detections from security tooling across a global customer base
- Support customers with queries via the MDR mailbox, assist with user management and investigations
- Engage in proactive threat hunting using threat intelligence sources
- Triaging alerts, distinguishing false positives from genuine threats, and executing remediation using built-in capabilities and remote PowerShell
- Support onboarding of new customers, guide tool deployment, and contribute to account management
- Improve operational processes and technologies, assess new tools, and create technical resources to automate threat identification and remediation
- Mentor team members and share expertise in detection analysis, customer support, and proactive threat hunting
Requirements
- Solid experience in Security Operations (SecOps), particularly detection and response
- Proven ability to investigate and remediate incidents using EDR/XDR tools
- Working knowledge of log query languages such as SQL, Splunk, or KQL
- Strong grasp of endpoint security, networking protocols, and cloud technologies
- Scripting or programming experience for security tooling and SOAR platforms
- Familiarity with the Mitre ATT&CK framework
- Understanding of Microsoft Windows Active Directory environments
- Experience creating PowerShell scripts and using remote PowerShell for remediation
