at Presidio in Chicago, Illinois, United States
Job Description
Description
SEIZE THE OPPORTUNITY TO BE A PART OF SOMETHING GREAT!
Presidio is on the leading edge of a technology-driven movement to transform the way business is done, for our customers and our customers' customers. Joining Presidio means immersing yourself in a culture of self-starters, collaborators and innovators who make real, lasting change in the marketplace via cutting-edge technology and business solutions. At Presidio, we know that it's our people that make the connections happen.
WHY YOU SHOULD JOIN US? You will set your career on track for outstanding achievement with a company that knows no limits. Presidio is a leading a global digital services and solutions provider focused on Digital Infrastructure, Business Analytics, Cloud, Security & Emerging solutions.
THE ROLE: Senior Security Analyst
Job Summary:
As an internal Managed Services Senior Security Analyst with Presidio, you will be responsible for supporting secure client environments to include active threat hunting, reporting, and consulting on current state of client environments. You will act as the first line of support for our in-house Security Analysts requiring additional expertise/oversight. This role will work closely with the Lead Security Analysts, Security Engineering, and other members of the Presidio Managed Services organization to ensure our services are being delivered to our client expectations.
Travel Requirements:
This is a remote role and will not require any travel.
Job Responsibilities:
Intra-Team Support and Escalation:
Provide regular feedback, mentorship, and development opportunities to team members.
Plan and execute long term strategies that benefit our clients and services
Serve as the Named Security Analyst for Presidio MDR Clients
Create and maintain good technical documentation
Security Analysis & Detection:
Analyze security events and determine malicious activities.
Create comprehensive security write-ups which articulate security issues, analysis, and remediation techniques
Collaborate with other Sr. Security Analysts, Engineering team and Architecture team for creation and tuning of Security Use Cases across multiple platforms
Assist the Engineering Team in managing toolset access for the Analyst Team
Operational Excellence:
Assist in developing and monitoring reliable metrics for security activities to identify trends and formulate action plans for continuous improvement.
Ensure adherence to Standard Operating Procedures, Quality Control procedures, and develop enhancements for alerting and operational tools.
Contribute to and enforce best practice policies; submit to Knowledge Base.
Engage in root cause analysis of critical events to refine preventative and reactive processes.
Stay updated on Cybersecurity trends, tools, standards, best practices, and news.
Generate comprehensive security write-ups detailing issues, analysis, and remediation strategies
Required Skills:
Prior knowledge of common network-based services and common client/server applications
Excellent communication and interpersonal skills
Strong and demonstrated ability to define effective security processes. Ability to identify opportunities in current processes and take action to roll out necessary changes.
Strong and practical knowledge of industry adopted frameworks and methodologies (MITRE ATT&CK, CIS, NIST, ISO, PCI-DSS, etc.)
Experience developing technical documentation, including reports, dashboards, Standard Operating Procedures (SOP), and Knowledge Base articles
Previous experience with vulnerability scanning tools
Prior experience working in a SOAR platform
Ability to work in a dynamic 24/7/365 shift environment
Preferred experience working for a Managed Services Security Provider (MSSP) and/or Managed Detection and Response (MDR) provider
Additional Desired Skills:
Ability to collaborate within a technical team and mentor others
Passion for Cybersecurity. Continually learning new attack vectors, new threats, and security framework expertise.
We ideally seek one of the following security certifications: GIAC, SSCP, CISSP, CISM, or other security related certifications
Education and Experience:
Bachelor's degree or the equivalent work experience and/or military experience
Overall 5+ years related IT experience which will include the following:
2+ years of Analyst experience within enterprise level Case Management tools
2+ years' experience of Analyst experience within enterprise level SIEM tools
2+ years' experience... For full info follow application link.
Presidio, Inc. is an Equal Opportunity/Affirmative Action Employer/ VEVRAA Federal Contractor. All qualified candidates will receive consideration for this position regardless of race, color, creed, religion, national origin, age, sex, citizenship, ethnicity, veteran status, marital status, disability, or any other characteristic protected by applicable federal, state and local statutes, regulations and ordinances.
