The analyst will perform monitoring, research, assessment and analysis on alerts from various security tools, including firewalls, antivirus systems, user behavior analytics tools, proxy devices and SIEM tools, etc. which requires demonstrable security incident response and/or insider threat experience.
Recommend and review new use cases for insider threat monitoring
Follow pre-defined actions to investigate security incidents or perform incident response actions, including escalating to other support groups.
Execute daily ad hoc tasks or lead projects as needed.
Participate in or lead daily and ad-hoc conference calls; Create, update or provide process documentation, or provide requested evidence for compliance & controls requests.
Core Role Competencies
Technical Knowledge: Has a recognizable area of technical competence. Familiar with appropriate standards. Applies subj...