Cyber Security Analyst (Remote)

About CyberSheath

CyberSheath Services International LLC is a rapidly growing Security and IT Managed Services Provider primarily focused on providing Cybersecurity services to the Defense Industrial Base (DIB). We are excited to be expanding our staff due to our growth and are looking to add a Cyber Security Analyst to our Security Operations team!

CyberSheath integrates compliance and threat mitigation efforts and eliminates redundant security practices that don’t improve and, in fact, may weaken an organization’s security posture. Our professionals tell clients where to stop spending, where to invest, and how to take what they are already doing and integrate it in a way that delivers improved security.

Successful candidates for CyberSheath are self-motivated, think out of the box, work, and solve issues independently. Additionally, our most successful people are self-starters and willing to put on many hats in order to succeed. CyberSheath is fast-growing and seeks candidates who want to be part of our upward trajectory.

Job Overview

The Cyber Security Analyst II will support proactive monitoring of client’s environments to detect, analyze, track, and mitigate external threats utilizing a multi-tenant security information and event management system (SIEM) and other tools used to provide managed security services. The successful candidate is well versed in numerous security technologies, understands the motivations and capabilities of Advanced Persistent Threat actors, and can communicate risks and make recommendations associated with specific network threats. This role will support the IT and Security Managed Services teams and as well as being a point of contact for security matters.

Essential Responsibilities (include but are not limited to):

Analyze, respond, document and report on potential security incidents identified in customer environments

Work with partners to maintain an understanding of security threats, vulnerabilities, and exploits that could impact systems, networks, and assets

Serve as an incident coordinator for security events that require urgent response, containment, and remediation

Develop and maintain Security tooling playbooks/runbooks

Continuously review and optimize existing technical processes, configurations, rulesets, technologies.

Provide analysis on various security enforcement technologies including, but not limited to SIEM, anti-virus, content filtering/reporting, malware prevention, firewalls, intrusion detection systems, web application firewalls, messaging security platforms, vulnerability scanners etc.

Actively research current threats and attack vectors being exploited in the wild

Actively work with associate analysts and perform investigations on escalations

Ability to discuss security posture with multiple clients and make recommendations to better their holistic security approach

Required Education, Experience, & Skills

Minimum of 3 years’ experience in Threat Analysis and Threat intelligence.
At least 2 years' experience working in a SOC

First-hand working experience with industry leading SIEM/SOAR tooling/providers

Prior experience with Sumo Logic, Google Chronicle, Azure Sentinel is a strong plus.

Advanced understanding of query languages

Working Kusto (KQL) knowledge is a plus.

Networking experience (TCP/IP, Routing, RFC 1918, VPN/Zero-Trust Networking)

Strong experience with Office 365 / Entra ID Ecosystems.

GCC-High Experience is a plus.

Possess strong troubleshooting, problem-solving, and verbal/written communication skills

Excellent communication skills to communicate with support personnel, customers, and managers

Demonstrated ability to work in a team environment

Must be a U.S. Citizen and reside within the United States or its Territories

Preferred Education, Experience, & Skills

Microsoft Cloud and Security Certifications (i.e. – AZ900, AZ104, SC200, SC300)

Industry Security Certifications (CISM, CISSP, CEH, Sec+)

Experience working in a fast-paced managed services environment (MSSP)

Great organization skills to balance and prioritize work and multitask

Great analytical and problem-solving skills to troubleshoot systems problems

Ability to work independently and remotely as part of a team

Work Environment

CyberSheath is a fully remote organization, and this will be a work-from-home position

Travel requirements: 0-5% yearly.

This opportunity is for a dedicated weekday M-F 8-5p local time within the United States.

CyberSheath is an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, gender identity, national origin, age, protected veteran status, among other things, or status as a qualified individual with a disability.

Apply for this job

First name

Last name

Email address

Location

Phone number

Resume

Attach resume

Attach another file

Attach file

What are your hours of availability?

monday
tuesday
wednesday
thursday
friday
saturday
sunday

What is your Linkedin Profile URL?

What are your salary requirements?

Are you authorized to work in the United States?

Will you now or in the future require sponsorship for employment visa status (e.g. H-1B status)?

What is your earliest start date?

Are you 18 years of age or older?

Are you willing to work evenings?

Are you willing to work weekends?

What is the highest level of education you’ve obtained?

We invite you to complete the optional self-identification questions below used for compliance with government regulations and record-keeping guidelines. Any self-identification information provided will not be considered in the selection process.

GENDER

VETERAN STATUS Learn more about veteran statuses

If you believe you belong to any of the categories of protected veterans listed below, please indicate by selecting the appropriate category(ies). The hiring employer is subject to the Vietnam Era Veterans' Readjustment Assistance Act of 1974, as amended by the Jobs for Veterans Act of 2002, 38 U.S.C. 4212 (VEVRAA) and requests this information in order to measure the effectiveness of the outreach and positive recruitment efforts it undertakes pursuant to VEVRAA.

DISABILITY STATUS Learn more about disability statuses

We are required by law to provide equal employment opportunity to qualified people with disabilities. We are also required to measure our progress toward having at least 7% of our workforce be individuals with disabilities. To do this, we must ask applicants and employees if they have a disability or have ever had a disability. Because a person may become disabled at any time, we ask all of our employees to update their information at least every five years.

Identifying yourself as an individual with a disability is voluntary, and we hope that you will choose to do so. Your answer will be maintained confidentially and not be seen by selecting officials or anyone else involved in making personnel decisions. Completing the form will not negatively impact you in any way, regardless of whether you have self-identified in the past. For more information about this form or the equal employment obligations of federal contractors under Section 503 of the Rehabilitation Act, visit the U.S. Department of Labor’s Office of Federal Contract Compliance Programs (OFCCP) website at www.dol.gov/ofccp.