ENGINEERING
Sr. MDR Analyst
About LogicHub
LogicHub is starting a different kind of Managed Detection and Response service. Rather than requiring analysts to do repetitive tasks, we use our own automation and decision support platform to execute those tasks and employ security analysts to dive deeper and grow as security professionals. With that, we are seeking analytic and creative minded individuals who have a passion for solving problems and protecting computer systems, networks, and data. Ideal candidates can interact with data at the command line as well as communicate effectively with client security teams.
RESPONSIBILITIES:
- Monitor client data lakes for intrusion activity
- Refine and enrich incidents thru research, driving context thru automation
- Present incidents to clients and communicate as needed to support resolution
- Update detection and automation components to produce more complete and accurate outcomes - Execute deep hunting exercises based on recent threat information
- Mentor MDR Analysts to operate at your level of proficiency
- Make LogicHub a great place to work
REQUIREMENTS:
- Bachelors Degree in Computer Science or creative field
- 4+ years of security analysis
- Python/bash/powershell programming
- Linux administration
- Windows administration
- Splunk/Elastic/Sumo data collection tools
- Security tool familiarity - network and endpoint
- SIEM - Splunk ES, Elastic, QRadar, Arcsight
- Knowledge of cloud environments, concepts and security concerns
- Good presentation skills
- Ability to pass a background check and drug test
- Ability to do shift work
HIGHLY DESIRED EXPERIENCE:
- GIAC certifications
- Data engineering
- Network engineering
- Cloud log analysis - AWS, Azure, GCP
- Automation - Phantom, Demisto, etc
- Configuration Management - Puppet, Chef, SaltStack, Ansible, WMI, Terraform, CloudFormation - Basic understanding of machine learning in Python and Spark
HOW TO APPLY
Send your resume and other relevant information to career@logichub.com.