Threat Analyst (Cybersecurity)

TL;DR

Threat Analyst (Cybersecurity): Identifying, investigating, and responding to cyber threats, vulnerabilities, and security incidents across the organization’s systems and networks with an accent on proactive monitoring and quick response to security events. Focus on enhancing security detection capabilities and streamlining threat detection workflows through automated tools and scripts.

Location: Onsite in Orlando, FL

Company

hirify.global is a leader in endpoint protection technologies, providing enterprise-level cybersecurity tools to improve the security of servers and endpoints.

What you will do

• Monitor security tools and systems (SIEM, IDS/IPS, EDR, etc.) for suspicious activity or breaches.
• Lead and participate in the response to security incidents, including investigating, containing, eradicating, and recovering from threats.
• Develop automated tools and scripts to enhance security detection capabilities and streamline threat detection workflows.
• Conduct forensic analysis and threat hunting to identify malicious activity.
• Leverage internal and external threat intelligence sources to stay informed about the latest security trends and threats.
• Ensure security processes and procedures align with regulatory requirements and industry best practices.

Requirements

• 3 years of experience in Information Technology with 1 year of specialized work in Active Directory, Application Development, Network Administration, or Information Security.
• Strong understanding of foundational Windows OS components and networking and security principles.
• Familiar with MITRE ATT&CK framework.
• Proficient in scripting languages such as Python, PowerShell, or Bash.
• Proficiency in custom SNORT, SIGMA, and YARA rule creation.
• Excellent analytical and problem-solving skills with the ability to communicate effectively.

Nice to have

• GIAC Certified Intrusion Analyst (GCIA).
• GIAC Security Essentials Certification (GSEC).
• Certified Information Systems Security Professional (CISSP).
• Certified Ethical Hacker (CEH).
• OffSec Certified Professional (OSCP).
• CompTIA Certs (Security +, Network +, Pentest +, CASP+).

Culture & Benefits

• Generally performed in an office environment but may require travel to visit company offices and/or property locations.
• Reasonable accommodations may be requested and will be evaluated for its relationship to the essential functions that must be performed.