The Company
Every day, NuHarbor Security improves the cybersecurity of our clients by making it stronger and easier to understand. Our comprehensive suite of security services, from strategic advising to 24-hour monitoring and management, provide an organizational view of security that is focused on results and recommendations that are valuable for both business and technical leaders. We’re growing quickly because our clients, and the general market, are looking for these outcomes and for the data it gives them to explain, promote, and justify, their security investment and mission.
The Role
The Senior Security Operations Analyst role serves as a senior escalation point for all Analyst technical matters. The Senior Security Operations Analyst role serves within one of the NuHarbor Managed Services Pods. They are responsible for ensuring that client environments are monitored for security incidents and responding to incidents and escalating notable events to clients and/or internal crew members.
What you’ll do
- Lives by the NuHarbor Corporate Values: Protect the House, Help Clients Win, Always Improve.
- Responsible and accountable for analyzing security alerts, events, and trends in order to effectively communicate the value of NuHarbor services.
- Responsible for delivering presentations, creating shared learning opportunities, and documentation of threats and themes within and across client environments.
- Independently and autonomously conducts investigations to provide actionable, context relevant, escalations to clients.
- Ensure client facing and internal escalations are serviced in a timely fashion.
- Leverage their understanding of client environments to identify and communicate security gaps and potential mitigations.
- Identifies and scopes opportunities for improvements in efficiency, quality, maturity, and capabilities.
- Autonomously trains and mentors’ junior analysts.
- Maintains current certifications and training relevant to their role as defined in the NuHarbor Career Course Toolkit.
- Develops, implements, and improves documentation and operational processes.
- Provides analysis and interpretation of vulnerability scans and assessments.
- Researches and remains up to date on global threat trends, vertical specific threat trends, new exploits, relevant vulnerabilities, and new zero-days.
- Uses an advanced understanding of, and ability to communicate, security technologies to mitigate cyber risks.
- Is responsible for ensuring reports are generated to standard and on-schedule.
- Maintains the NuHarbor Security threat intelligence platform.
- Performs threat hunting in client environments.
- Creates client facing threat intelligence reports.
- Proactively identifies and communicates internal and client risks.
- Develops recommendations and enhancements to mature a client’s cybersecurity program.
- Performs intelligence gathering and analysis to influence technical control development, client security program maturity, and client attack surface defense.
- Required to participate in 24x7 rotation.
- Communicates and presents to executive level client stakeholders.
Your foundation. The requirements for this role:
- Bachelor’s Degree and five (5) years of experience. Experience should be in a cybersecurity field and should include relevant industry certifications.
- Typical Degrees: Computer Science, Information Technology, Cybersecurity, Data Analytics, Mathematics, or related field(s).
- In lieu of a degree, two (2) years of experience in a related technology field and relevant industry certifications are required.
- Demonstrated experience with SOC operations, executing security event triaging and tuning.
- Demonstrated experience writing runbooks and support procedures.
- Strong understanding of Incident Response phases and demonstrated experience responding to security incidents.
- Demonstrated experience with security event triaging and threat hunting executed through both a SIEM and EDR toolset.
- Demonstrated experience with Endpoint Detection and Response (EDR) or Security Orchestration Automation and Response solutions.
- Demonstrated experience with scripting in industry standard languages in a manner that supports automation solutions.
- Must be a citizen of the United States.
-
Additional capabilities that will differentiate you for this role:
- Bachelor’s Degree and seven (7) or more years in the Information Technology field.
- Holds at least two relevant industry certifications (GCFA, GCIH, CEH, CISSP, etc.)
- Excellent written and verbal communication skills.
- Technical writing and reporting experience.
- Experience executing initial triaging and response through a SOAR platform.
- Experience with multiple operating systems (Linux, MacOS, Windows), their command lines, processes, and file systems.
- Experience with memory and storage forensics.
- Experience with static and dynamic malware analysis.
- Experience providing recommendations to harden existing security controls.
- Experience identifying gaps within security control architecture.
- Talent for communicating complex topics in an easily digestible manner.
- Experience with data science techniques (clustering, anomaly detection, data normalization, etc.
- General systems administrator experience.
- Experience working in multiple cybersecurity disciplines (i.e. RedSec, Threat, Information Assurance, Engineering, etc.)
The Rewards
What you can expect:
- The engagement and support of company leadership who recognize the challenge of marketing a complex cybersecurity service in a chaotic market.
- An organization that recognizes and rewards employee commitment and contribution to our customers’ satisfaction and success
- Growth in your career and capabilities as you help to chart a path to improving customer interactivity and service adoption.
- A collaborative and driven working environment in a rapidly growing company and market
- A fun and social working environment where you are encouraged to be your true self.
You can also expect competitive salary and benefits, including paid time to give back in your community and generous PTO.
We are purpose driven. We, as an organization, above anything else protect the house first and then help our customers win. If this sounds like the kind of organization you’d like to be a part of, we‘d like to hear from you
AAP/EEO Statement
The Equal Employment Opportunity Policy of NuHarbor Security is to provide a fair and equal employment opportunity for all associates and job applicants regardless of race, color, religion, national origin, gender, sexual orientation, age, marital status or disability. NuHarbor Security hires and promotes individuals solely based on their qualifications for the job to be filled.
NuHarbor Security believes that employees should be provided with a working environment which enables each associate to be productive and to work to the best of his or her ability. We do not condone or tolerate an atmosphere of intimidation or harassment based on race, color, religion, national origin, gender, sexual orientation, age, marital status, or disability. We expect and require the cooperation of all employees in maintaining a discrimination and harassment-free atmosphere.