Security Operations Analyst - West Coast

Job Summary

Required Qualifications

• 2+ years of experience in a SOC or Digital Forensics (DFIR) role
• Demonstrated experience with Windows, Linux, and MacOS as an attack surface
• Demonstrated experience with basic Threat Actor tools and techniques: MITRE ATT&CK Framework, PowerShell & Command Prompt Terminals, WMIC, Scheduled Tasks, SCM, Windows Domain and host Enumeration Techniques, Basic Lateral Movement Techniques, Basic Persistence Mechanisms, Basic Defense Evasion Techniques, other offensive/Red Team TTPs
• Demonstrated experience with static and dynamic malware analysis concepts
• Working knowledge of Windows Administration or Enterprise Domain Administration
• Active Directory, Group Policy, Domain Trusts, etc.
• Working knowledge of core networking concepts
• Common ports/protocols, NAT, Public/Private IPs, VLANs, etc.
• Working knowledge of web technologies and concepts
• Web servers/applications, OWASP top 10, etc.
• Effective communication skills, with the ability to explain complex events to less technical audiences
• Dedicated to prioritizing and addressing customer needs and concerns
• A strong sense of curiosity and a genuine excitement for learning
• Preferred Qualifications: Previous experience in an MSP/MSSP/MDR role
• Linux and MacOS investigative experience
• Experience with scripting languages (such as PowerShell, Python, Bash, PHP, JavaScript, or Ruby)
• Demonstrated experience on platforms such as HackTheBox, TryHackMe, Blue Team Labs Online, etc.
• Demonstrated experience with Cloud-based investigations such as M365, Azure, AWS, GCP, etc.
• Participation in cybersecurity competitions such as Capture the Flags, the Collegiate Cyber Defense Competition, etc.
• Familiarity with MSP tools such as RMMs