Threat Analyst

2 days ago

Apply Now

Receive Emails with Similar Jobs

Sophos

WebsiteLinkedInAll Job Openings

IT Security • Next-Gen UTM (Unified Threat Management) • Mobile Device Management • Endpoint Security • Antivirus

1001 - 5000 employees

Founded 1985

🔒 Cybersecurity

☁️ SaaS

💰 Post-IPO Equity on 2021-08

Description

• About Us • Sophos is a global leader and innovator of advanced security solutions that defeat cyberattacks, including Managed Detection and Response (MDR) and incident response services and a broad portfolio of endpoint, network, email, and cloud security technologies. • As one of the largest pure-play cybersecurity providers, Sophos defends more than 600,000 organizations and more than 100 million users worldwide from active adversaries, ransomware, phishing, malware, and more. • Sophos’ services and products connect through the Sophos Central management console and are powered by Sophos X-Ops, the company’s cross-domain threat intelligence unit. • Sophos X-Ops intelligence optimizes the entire Sophos Adaptive Cybersecurity Ecosystem, which includes a centralized data lake that leverages a rich set of open APIs available to customers, partners, developers, and other cybersecurity and information technology vendors. • Sophos provides cybersecurity-as-a-service to organizations needing fully managed security solutions. • Customers can also manage their cybersecurity directly with Sophos’ security operations platform or use a hybrid approach by supplementing their in-house teams with Sophos’ services, including threat hunting and remediation. • Sophos sells through reseller partners and managed service providers (MSPs) worldwide. • Sophos is headquartered in Oxford, U.K. • More information is available at www.sophos.com. • Role Summary • As an MDR Threat Analyst, you will work with enterprise systems, log analysis systems, and endpoint collection systems to facilitatethe investigation, identification and neutralization of cyber threats. • You will work alongside and contribute to a team of analysts with the objective of providing best in class monitoring, detection and response services.

Requirements

• 4-5 years of experience working in a SOC environment or computer security team in an IT environment • Endpoint and network security experience required; IDS, IPS, EDR, ATP, Malware defenses and monitoring experience • Threat hunting experience preferred • Knowledge of common adversary tactics and techniques, e.g., obfuscation, persistence, defense evasion, etc. • Knowledge of Mitre ATT&CK framework preferred • Working knowledge of incident response procedures • Experience with SQL query construction preferred • Experience with OSQuery is a plus • Experience administering and supporting Windows OS (both workstations and server) and one of the following: Apple or Linux-based operating systems (e.g. XP, Windows 7, 2003, 2008, OS X) • Fundamental understanding of network traffic analysis including TCP/IP, routing, switching, protocols, etc. • Strong understanding of Windows event log analysis • Experience with enterprise information security data management - SIEM experience a plus • Programming and scripting skills - proficient knowledge of Powershell is a plus • Excellent troubleshooting and analytical thinking skills • Strong documentation and communication skills • Advanced Cyber Security certifications preferred but not required • Excellent customer service skills • Passion for all things information technology and information security • Natural curiosity and ability to learn new skills quickly • Ability to think outside the box • Innovative mindset • Bachelors in Information Technology, Computer Science or a related field; or relevant commensurate work experience • Willingness to work outside of standard business hours including weekends and holidays – our Managed Detection and Response is a 24X7X365 service

Benefits

• • • • • • • • • • • •