National Life - Montpelier, VT

posted about 2 months ago

Full-time - Mid Level
Montpelier, VT
Insurance Carriers and Related Activities

About the position

As a Cybersecurity Analyst specializing in SIEM (Security Information and Event Management) and DLP (Data Loss Prevention), you will play a critical role in safeguarding our organization's information systems against cyber threats. This position is designed for individuals who are passionate about detection analysis and response to potential security incidents. You will be working in a fast-paced environment where your ability to differentiate between false alarms and genuine threats is essential. Your expertise will be leveraged to provide crucial situational awareness to our network and systems, ensuring that we maintain a robust security posture. In this role, you will utilize a variety of monitoring and analysis tools to support, handle, and respond to DLP incidents and alerts. You will be responsible for monitoring, discovering, and analyzing potential threats that are elevated by various technology tools, including EDR (Endpoint Detection and Response), NSM (Network Security Monitoring), and SIEM. Your responsibilities will include triaging incidents based on their risk and potential impact, escalating issues when necessary, and analyzing root causes for both true and false positive alerts. You will also create and review reports and dashboards that aggregate audit and analysis tasks, providing insights into our security operations. Additionally, you will be expected to stay informed about industry trends and emerging threats, recommending appropriate solutions to mitigate risks. Your feedback will be instrumental in the continuous improvement lifecycle of our detection technologies, allowing you to make a significant impact on our security operations. This position offers access to cutting-edge detection tools and technologies, empowering you to contribute to the development of our security program.

Responsibilities

  • Support, handle, and respond to DLP incidents and alerts.
  • Monitor, discover and analyze potential threats elevated by a variety of technology tools (such as EDR, NSM, SIEM).
  • Triage incidents according to risk and potential impact. Escalate when appropriate.
  • Analyze root causes for true and false positive alerts.
  • Create and review reports and dashboards which aggregate audit and analysis tasks.
  • Monitor industry trends and emerging threats and recommend appropriate solutions to mitigate risk.
  • Communicate feedback to be used in the continuous improvement lifecycle of our detection technologies.

Requirements

  • Bachelor's degree in computer science, cybersecurity, or related field, or equivalent experience.
  • Minimum of 5 years of information security experience relating to continuous security monitoring and/or incident response.
  • Expertise in configuration and response for DLP systems (Cloud, Email, Network, and/or Endpoint).
  • Proven experience with SIEM and related technologies, native OS and cloud logging, EDR, and incident management systems.
  • Ability to analyze and interpret complex security events, logs, and network traffic to identify indicators of compromise (IOCs) and potential threats.
  • Exemplary analytical and problem-solving skills.
  • Strong understanding of Windows and Linux operating systems, networking principles, and cloud technologies.
  • Demonstrated commitment to continuous learning and professional development.
  • Excellent communication and interpersonal skills.

Nice-to-haves

  • Relevant industry certifications such as GSEC, SSCP, GCIH, GMON, GCED, CySA+, CASP+
  • Expertise in scripting or automation using tools such as PowerShell, Python and/or Bash.

Benefits

  • 401(k) retirement plan match
  • Medical, dental, and vision insurance
  • Company funded wellness account for director and below employees
  • 10 paid holidays
  • Generous paid time off plan (22 days of combined time-off for non-exempt employees)
  • 6 weeks of paid parental leave
  • 6 weeks of paid family leave after a year of full-time employment
© 2024 Teal Labs, Inc
Privacy PolicyTerms of Service