Title: Lead Senior Cyber Security Analyst
Location: Deerfield Beach, FL- 3 days a week on site
Work Requirements: Those authorized to work in the United States without sponsorship are encouraged to apply: Citizen, GC Holders or GC-EAD
This role is not open to third party vendors.
Summary
The Lead Senior Cyber-Security Analyst is a crucial member of the Information Security department, reporting to the Manager of the Security Operations Team. This role oversees Cyber Security Analysts, focusing on security monitoring, investigations, response, and threat intelligence.
Responsibilities
- Manage and conduct technical detection, analysis, containment, and response.
- Act as the technical lead and incident manager for security incidents.
- Ensure timely and proper closure of security incidents and lead post-incident reviews.
- Capture and report cybersecurity metrics for executive briefings.
- Develop and maintain playbooks for security incidents.
- Build relationships with customers and stakeholders.
- Mentor and guide analysts to enhance their skills and work quality.
- Provide quality assurance for analysts' work.
- Enhance Security Operations monitoring, hunting, and incident management processes.
- Perform analysis of attacker tactics, techniques, and procedures (TTPs).
- Oversee multiple investigations and incidents concurrently.
- Coordinate activities of incident responders, including external vendors and business units.
- Report and update management on threats and incidents.
- Create knowledge, tools, and artifacts for incident response.
Qualifications
- Experience with MSFT Sentinel SIEM.
- Deep understanding of threat intelligence platforms, security automation, IDS/IPS, FIM, DLP, and other monitoring tools.
- Proficiency in system security, popular attack vectors, and forensics.
- Ability to explain complex security issues to various audiences.
- In-depth knowledge of network devices, Microsoft Windows systems, forensics, malware reverse engineering, and penetration testing.
- Bachelor's Degree in an IT-related field or 10 years of IT experience with at least 3 years in cybersecurity response on a SOC/CIRT team.
- Experience leading SOC teams in cyber monitoring, hunting, and incident response.
- Familiarity with Intelligence Driven Defense, Cyber Kill Chain, and MITRE ATTACK framework.
- Knowledge of Cloud concepts and experience responding to Cloud threats.
- This role is essential for maintaining strong cybersecurity operations and ensuring effective incident response.