Security Analyst II

Summary

Join Pondurance as a Security Analyst II and contribute to a 24/7/365 Security Operations Center (SOC). You will be responsible for monitoring, detecting, and responding to security alerts, analyzing intrusions, and performing threat hunting. This role requires experience with various security tools and technologies, including EDR solutions, log analysis, and vulnerability scanning. The position offers a remote work option (McLean, VA or Indianapolis, IN preferred), a 4x10 shift (Wednesday-Saturday), and competitive compensation and benefits.

Requirements

• Demonstrated experience with some of the following: Packet Capture (PCAP) analysis using Wireshark
• Familiarity with commercial or open source log or SIEM solutions
• Event analysis, correlation, reporting and alerting
• Reverse engineering malware and host-based analysis/detection
• Service discovery tools such as nmap and
• Vulnerability scanning tools such as Nessus, Nexpose, and/or Qualys
• Experience with system or network administration (Unix/Linux experience preferred)
• Experience and knowledge of information security, IPv4/v6 networks, network devices, proxies, and IDS/IPS tools and applications
• Endpoint, Detection and Response (EDR) solution experience (FireEye, SentinelOne, Crowdstrike for example)
• 4-7 years of overall I.T. experience
• Industry-recognized certifications related to cybersecurity or 2-year degree in computer technologies and industry-recognized certifications
• 4-year degree in Computer Science or equivalent
• Continuous growth progress within the Cybersecurity/Information technology field by accumulating certifications, degrees and/or CPEs
• Intermediate level log analysis and review skills
• Beginner experience with vulnerability scanning tools and reporting
• Intermediate Email phishing detection/analysis experience
• Experience working within ticketing systems

Responsibilities

• Review internal tickets and assign according to designed workflows
• Analyze intrusions, detect incidents, and assist in response
• Seek out attacker presence on client’s networks and logs with advanced threat hunting
• Identify attack vectors, threat tactics and attacker techniques
• Proactively engage with clients to understand their security needs and wants
• Regularly assist with reviews and provide reports on observed threats
• Research new threats to enterprise environments
• Assist Senior Security Analysts as directed by leadership to participate in hunt activities and intelligence actions
• Work with the team to resolve issues, tweak current processes, and develop/improve existing work instructions
• Analyze Indicator of Compromises (IOCs) and work with the team to develop countermeasures
• Create, update, and participate in crafting playbook responses, and other Standard Operating Procedure (SOP) documentation

Preferred Qualifications

Unix/Linux experience

Benefits

• Medical, dental, vision, disability, FSA, HSA, life and AD&D insurance, 401(k) Plan
• PTO, sick, holiday, & parental leave
• Competitive compensation packages based on the market and your overall credentials