Full-Time

Threat Analyst 1

Posted on 1/3/2025

Sophos

Sophos

1,001-5,000 employees

Provides comprehensive cybersecurity solutions for businesses

Cybersecurity

Compensation Overview

CA$52k - CA$86kAnnually

+ Bonus

Mid

Remote in Canada

Category
Cybersecurity
IT & Security
Required Skills
TCP/IP
PowerShell
SQL
Linux/Unix
Requirements
  • Willingness to work outside of standard business hours, including weekends and holidays – our MDR service is 24x7x365
  • Excellent troubleshooting and analytical skills, with proven ability to think outside the box
  • Customer service-oriented with strong written and verbal communication skills
  • Must thrive within a team environment as well as on an individual basis
  • Passion for all things related to information technology and cybersecurity
  • Natural curiosity and ability to learn new skills quickly
  • Innovative mindset and driven to contribute to a team providing a best-in-class cybersecurity service
  • Minimum 2+ years of experience working in a SOC environment or computer security team in an IT environment
  • Experience with threat hunting
  • Experience with endpoint and network security monitoring
  • Experience administering and supporting Windows OS (both workstations and server) and one of the following: Apple or Linux-based operating systems (e.g. XP, Windows 7, 2003, 2008, OS X)
  • Knowledge of common adversary tactics and techniques, e.g., obfuscation, persistence, defense evasion, etc.
  • Knowledge of Mitre ATT&CK framework
  • Knowledge of incident response procedures
  • Basic understanding of network traffic analysis including TCP/IP, routing, switching, protocols, etc.
  • Basic understanding of Windows event log analysis
  • Experience with SQL query construction
  • Experience with OSQuery
  • Experience with enterprise information security data management - SIEM experience
  • Programming and scripting skills - proficient knowledge of Powershell
Responsibilities
  • Investigate and analyze logs and security-related events via Sophos tooling
  • Identify and respond to cyber threats occurring within customer environments
  • Communicate and document findings to various customer audiences including technical and executive teams
  • Follow up with customers through to issue resolution and drive continuous improvement by providing detailed recommendations to minimize risk in customer environments
  • Acknowledge and satisfy inbound customer requests and interact with customers through various mediums
  • Collaborate and assist with core security and threat response teams
  • Actively research emerging Indicators of Compromise/Attack, exploits and vulnerabilities with the intent of operationalizing findings to better protect our customers

Sophos provides cybersecurity solutions to protect businesses from digital threats like malware, ransomware, and phishing attacks. Their products include endpoint protection for individual devices, network security for entire systems, and mobile security for smartphones and tablets. A key feature is Sophos Central, a cloud-based management console that allows users to oversee all security measures from one platform, making it easier to manage and respond to threats. Additionally, Sophos offers Managed Detection and Response (MDR) services, where experts monitor and address security incidents for clients who may not have in-house capabilities. Unlike many competitors, Sophos combines a wide range of security services with a subscription-based model, ensuring ongoing support and updates. The company's goal is to provide comprehensive protection for organizations of all sizes, helping them navigate the complex landscape of cybersecurity.

Company Stage

Acquired

Total Funding

$81.3M

Headquarters

Abingdon, United Kingdom

Founded

1985

Simplify Jobs

Simplify's Take

What believers are saying

  • Sophos' partnership with Cybit expands market reach with 24/7 managed services.
  • Sophos' high MITRE ATT&CK ratings enhance its industry reputation and client trust.
  • Sophos' involvement in Black Hat MEA 2024 highlights its commitment to AI-driven innovation.

What critics are saying

  • 'Quishing' attacks using QR codes pose new threats bypassing traditional defenses.
  • Rising scam activity on platforms like Bluesky requires adaptive threat response strategies.
  • Sophos' regional expansion in EMEA North may strain resources if not managed well.

What makes Sophos unique

  • Sophos Central offers a unified platform for managing diverse security solutions.
  • Sophos excels in MITRE ATT&CK evaluations, showcasing its effective ransomware response.
  • Sophos' MDR services provide expert monitoring for clients lacking in-house cybersecurity expertise.

Help us improve and share your feedback! Did you find this helpful?

Benefits

Health Insurance

Disability Insurance

Remote Work Options

Wellness Program

Mental Health Support

INACTIVE