Ats - Atlanta, GA

posted 5 months ago

Full-time - Entry Level
Atlanta, GA
Truck Transportation

About the position

American Technology Services (ATS) is seeking an Associate Cyber Security Analyst to join our team in Atlanta, GA. This full-time position is ideal for individuals who are eager to learn and grow in the field of cybersecurity. The successful candidate will have a foundational understanding of computer security concepts, including Identity & Access Management, Network Security, Application Security, Incident Management, and Risk & Compliance. The role involves assisting in the development of incident response plans, workflows, and Standard Operating Procedures (SOPs), while also providing constructive feedback to enhance these processes. As an Associate Cyber Security Analyst, you will be expected to demonstrate strong logical and critical thinking abilities, particularly in analyzing security events such as Windows event logs, antivirus logs, network traffic, and logs from Intrusion Detection/Prevention Systems (IDS/IPS) and firewalls for any signs of malicious activity. You will assist in vulnerability scan analysis and data gathering, and you will be responsible for providing feedback on rules, filters, views, signatures, and countermeasures to continuously improve detection efforts. The position requires participation in incident investigations and responses to advanced or complex threats. You will follow detailed incident response workflows and collaborate with senior SOC personnel to execute the Incident Response plan effectively. Additionally, you will research and leverage cybersecurity intelligence sources to enhance the SOC's incident detection and response capabilities. Collaboration with peers and other teams is essential to identify improvements and tune use cases or signatures to enhance monitoring value. The ability to work with the SOC team and leadership during cyber monitoring, hunting, and incident response investigations is crucial for this role.

Responsibilities

  • Assist in the development of incident response plans, workflows, and SOPs and provide feedback.
  • Analyze security events including Windows event logs, AV logs, network traffic, IDS/IPS events, and firewall logs for malicious intent.
  • Assist in vulnerability scan analysis and data gathering.
  • Provide feedback on rules, filters, views, signatures, and countermeasures to enhance detection efforts.
  • Participate in incident investigations and responses involving advanced or complex threats.
  • Follow detailed incident response workflows and participate in critical security incident response investigations.
  • Research and leverage cybersecurity intelligence sources to improve SOC incident detection and response capabilities.
  • Collaborate with peers and other teams to identify improvements and tune use cases or signatures to enhance monitoring value.

Requirements

  • Bachelor's degree in cyber security or equivalent certification.
  • At least 1 year of experience in incident analysis, security architecture, malware research, SOC, or similar incident response experience.
  • At least 1 year of experience with Security Information and Event Monitoring (SIEM) platforms or log management systems.

Nice-to-haves

  • 2+ years of experience with Microsoft Windows systems including Active Directory.
  • 2+ years of experience with Unix systems.
  • 2+ years of experience with network devices such as firewalls, switches, and routers.
  • 2+ years of experience with Jira ticketing system.
  • 2+ years of experience inspecting log files, network packets, and other security tool information outputs.
© 2024 Teal Labs, Inc
Privacy PolicyTerms of Service