Sr. MDR Analyst

About LogicHub

LogicHub is starting a different kind of Managed Detection and Response service. Rather than requiring analysts to do repetitive tasks, we use our own automation and decision support platform to execute those tasks and employ security analysts to dive deeper and grow as security professionals. With that, we are seeking analytic and creative-minded individuals who have a passion for solving problems and protecting computer systems, networks, and data. Ideal candidates can interact with data at the command line as well as communicate effectively with client security teams.

RESPONSIBILITIES:

• Monitor client data lakes for intrusion activity
• Refine and enrich incidents thru research, driving context thru automation
• Present incidents to clients and communicate as needed to support resolution
• Update detection and automation components to produce more complete and accurate outcomes
• Execute/Create deep hunting exercises based on recent threat information
• Mentor MDR Analysts to operate at your level of proficiency
• Make LogicHub a great place to work

REQUIREMENTS:

• Bachelors Degree in Computer Science or creative field
• 4+ years of security analysis
• Python/bash/PowerShell programming
• Linux Administration
• Windows administration
• Familiarity with Splunk/Elastic/Sumo data collection tools
• Security tool familiarity - network and endpoint
• SIEM - Splunk ES, Elastic, QRadar, ArcSight
• Knowledge of cloud environments, concepts, and security concerns
• Good presentation skills
• Ability to pass a background check and drug test
• Ability to do shift work

HIGHLY DESIRED EXPERIENCE:

• GIAC certifications
• Experience with one of the following: Data engineering, Network engineering, SIEM engineering
• Cloud log analysis - AWS, Azure, GCP
• Automation usage - Phantom, Demisto, etc
• Configuration Management usage - Puppet, Chef, SaltStack, Ansible, WMI, Terraform, CloudFormation
• Basic understanding of machine learning in Python and Spark

Senior MDR Analysts have opportunities to explore and learn Logichub SOAR automation, Threat Detection, and Leadership via project work. This is done as an extension to a Senior’s current duties and only as time permits. The goal is to have a Senior prepared to step into the role of an engineer, or content writer.

HOW TO APPLY

Send your resume and other relevant information to career@logichub.com.