Sr. Cyber Analyst

Job Description

Job Title: Sr. Cyber Analyst

Location-Type: Hybrid, NYC (T,W,TH)

Start Date Is: ASAP

Duration: 12-month contract

Compensation Range: $50-$70/hr

Job Description:

We are seeking a Senior Cyber Analyst to join our dynamic security team in a fast-paced environment. This role involves directly supporting our comprehensive Security Program by conducting strategic analysis of intelligence data from various sources. The ideal candidate will leverage this information in threat hunting and incident response, focusing on cloud environments.

Responsibilities:

Conduct in-depth research and strategic analysis of intelligence data to identify vulnerabilities, threat actors, and emerging trends.

Provide Client-driven insights into existing and emerging threats, using these insights to search for anomalous and/or malicious activity across the enterprise.

Collaborate with Security Engineering and the Security Operations Center to establish baselines for user behaviors and events, and to develop new detection and response workflows.

Support incident response and investigation efforts, offering triage support as part of the core security team.

Develop and implement security incident playbooks and runbooks.

Build and recommend countermeasures based on thorough threat analysis and forecasting.

Prepare and present detailed analysis, findings, and recommendations through briefings, reports, and dashboards to various stakeholders, including senior leadership.

Must-Haves:

Minimum 5 years of experience in Information Security with a focus on incident response or threat detection.

In-depth knowledge of cloud environments (AWS, GCP, Azure, Kubernetes), SaaS platforms (O365, Google Workspace), or IAM.

Proficiency with automation tools specifically for Incident Handling/SOAR.

Expertise in using SIEM tools or data lakes and in analyzing large data sets using SQL for logging analysis.

Strong grasp of Incident Response principles and processes, including dissecting attacker methodologies and EDR tooling.

Excellent analytical and problem-solving skills, with a strong learning mindset eager to embrace new technologies in security.

Nice-to-Haves:

Experience in cloud-native or tech-focused environments.

Knowledge of network systems or MacOS.

Programming or scripting skills.

Security certifications such as GCTI, GCIH, GCIA, GPEN.