Job SummaryThe Security Consultant will be responsible for researching confirmed security events in depth, maturing processes, creating and improving automation and other tools, product improvements, and the mentorship and professional growth of junior analysts.
The analyst will have involvement with evaluating new security technologies, incident response, penetration testing and the freedom to try out new ideas and technologies to improve the SOC.
Job Specific Essential Duties & Responsibilities : Key Roles Performs endpoint security monitoring, security event triage, and incident response to detect and respond to advanced threats Identifies potential gaps and offers solutions to include internal team needs, product improvements and client security posture Coordinates with other team members and management to investigate, document and report incidents Collaborate with our Threat Analysis Unit to provide in depth reports of confirmed security incidents and produce technical threat advisory broadcasts about new and emerging threats The analyst will be responsible for providing training and mentorship to junior analysts to assist with their professional development goals.
This will include developing relevant training exercises and classes with the assistance of the leadership team Work with security engineering teams to validate detection effectiveness as well as identifying detection improvements Maintains records of security events investigated and incident response activities, utilizing case management and ticketing systems Monitors and analyzes EDR and Security Information and Event Management (SIEM) to identify security issues for remediation Provides recommendations, creates, modifies, and updates EDR and Security Information Event Management (SIEM) tool rules Ensure that we are implementing best practice security policies that address the client's business need while protecting their vital corporate assets Take on Security Operations responsibilities when not on a SOC shift : this includes but is not limited to documentation, basic malware analysis, exceptions tracking, security tool management, tuning, and configuration, along with metrics and reporting Be a primary for or support ongoing projects by assisting in the automation, implementation, testing and documentation of security related projects Education / Knowledge / Experience Bachelor's degree on computing science English proficiency Preferred : Portuguese Basic Scripting Skills : Unix / Linux Shell scripts, Python, Go, PowerShell, C++, C#, Perl Endpoint Security (e.
g. Symantec SEP, WSS, Carbon Black Endpoint Standard, Carbon Black Enterprise Protection) IPD / IDS Firewalls (e.g. PaloAlto Networks, Checkpoint, Cisco ASA, Juniper SSG, PFSense, etc.
IT / Telecom