Security Analyst

GuidePoint Security is seeking a Security Analyst with a proactive mindset to prevent incidents rather than just respond.  The ideal candidate will have a willingness to continuously update knowledge and skills and is keen on collaborating as a team player and be willing to learn from constructive criticism to stay ahead of emerging threats and innovative threat actors.

Note: This is a remote position but applicants located in our Mid-Atlantic region (NC, VA, WV, MD, DC, DE, NJ, or PA) are highly preferred.

Technical Skills Required:

• Familiarity with Splunk for investigations, ability to create and run SPL queries
• Understanding of Indicators of Compromise (IOCs)
• Deep understanding of TCP/IP, DNS, DHCP, and similar protocols
• Ability to analyze network traffic and identify anomalies
• Knowledge of endpoint detection and response (EDR) tools
• Experience with anti-virus and malware analysis
• Familiarity with MITRE ATT&CK and other similar incident response frameworks
• Hands-on experience in triage, containment, and threat eradication
• The ability to analyze and monitor logs and formulate potential attack theories using analytical skills for scenarios
• Interpret logs from systems such as servers, firewalls, and applications
• Identify patterns and detect threats using log correlation across cybersecurity tools
• Basic proficiency in scripting languages (Python, Bash, PowerShell)
• Use regular expressions (regex) for data parsing
• Understand the importance of vulnerability management and scanning
• Knowledge of forensic tools preferred
• Familiarity with cloud security practices and tools (AWS GuardDuty, Microsoft Defender for Cloud)

Must be able to exhibit the following soft skills as an analyst:

• Strong critical thinking and problem-solving skillset
• Ability to analyze complex situations and make informed decisions under pressure
• Strong verbal and written communication skills for documenting incidents and collaborating with teams
• Ability to convey technical concepts to non-technical stakeholders
• Keen observational skills to spot anomalies and patterns
• Willingness to collaborate with other analysts, IT teams, and external stakeholders
• Calm and flexible in fast-paced, high-pressure environments
• Understanding of threat actor tactics, techniques, and procedures (TTPs)
• Familiarity and knowledge of emerging threats and vulnerabilities and have the means to obtain relevant information for threat investigations
• Previous experience in a SOC or similar role preferred
• Experience with managing real-world incidents
  
  

Preferred certifications:

• CompTIA Security+
• GIAC Certified Incident Handler (GCIH)
• Certified Ethical Hacker (CEH)
• Certified Information Systems Security Professional (CISSP)