Security Analyst (Hybrid in Philadelphia, PA) - Mid-Atlantic region
Role summary
Cyber Focus AII is seeking a Security Analyst for a hybrid role in Philadelphia, PA, with onsite requirements only one week per month. The role involves conducting investigations using CrowdStrike, analyzing network traffic, monitoring logs, and responding to threats. Candidates should have experience in a SOC or similar environment, a strong understanding of networking protocols (TCP/IP, DNS, DHCP), familiarity with EDR tools, and basic scripting skills in Python, Bash, or PowerShell. Preferred qualifications include incident response experience, cloud security knowledge (AWS GuardDuty, Microsoft Defender for Cloud), and relevant certifications like CCSA or GCIH. The company offers comprehensive benefits and a collaborative work environment.
Cyber Focus AII's mission is to help cybersecurity professionals discover cutting-edge opportunities in their field. We are not a staffing firm or agency. Cyber Focus AI does not hire for these roles—we use advanced technology to locate and verify them from actual employers.
Employer Industry: Cybersecurity Services
Why Consider This Job Opportunity
- Unique opportunity to grow your career with one of the fastest-growing companies in the nation
- Comprehensive group medical insurance options with significant employer contributions
- Flexible Time Off (FTO) program and 12 corporate holidays
- Supportive and collaborative work environment with mentorship opportunities
- Hybrid work model with onsite requirements only 1 week per month
- Healthy mobile phone and home internet allowance
What To Expect (Job Responsibilities)
- Conduct investigations utilizing CrowdStrike and advise users on best practices for leveraging NG-SIEM
- Analyze network traffic and identify anomalies, employing strong analytical skills
- Monitor and interpret logs from various systems to detect and respond to threats
- Collaborate with other analysts, IT teams, and external stakeholders to manage real-world incidents
- Stay informed on emerging threats and vulnerabilities to enhance threat investigations
What Is Required (Qualifications)
- Previous experience in a Security Operations Center (SOC) or similar role
- Strong critical thinking and problem-solving skills with the ability to make informed decisions under pressure
- Deep understanding of TCP/IP, DNS, DHCP, and similar protocols
- Familiarity with endpoint detection and response (EDR) tools and anti-virus/malware analysis
- Basic proficiency in scripting languages such as Python, Bash, or PowerShell
How To Stand Out (Preferred Qualifications)
- Certifications such as CrowdStrike Certified SIEM Analyst (CCSA) or GIAC Certified Incident Handler (GCIH)
- Experience with managing real-world incidents
- Familiarity with cloud security practices and tools like AWS GuardDuty or Microsoft Defender for Cloud
- Knowledge of MITRE ATT&CK and incident response frameworks
- Willingness to continuously update knowledge and skills in the cybersecurity field
#Cybersecurity #CareerGrowth #HybridWork #InformationSecurity #EmployeeBenefits
We prioritize candidate privacy and champion equal-opportunity employment. Central to our mission is our partnership with companies that share this commitment. We aim to foster a fair, transparent, and secure hiring environment for all. If you encounter any employer not adhering to these principles, please bring it to our attention immediately.
We are not the EOR (Employer of Record) for this position. Our role in this specific opportunity is to connect outstanding candidates with a top-tier employer.
#CyberFocusAI
