Cyber reputed company Analyst II
CyberSheath Services International LLC is a rapidly growing reputed company and IT Managed Services Provider primarily focused on providing Cybersecurity services to the Defense Industrial reputed company (DIB). We are excited to be expanding our staff due to our growth and are looking to add a Cyber reputed company Analyst to our reputed company Operations team! CyberSheath integrates compliance and threat mitigation efforts and eliminates redundant reputed company practices that don't improve and, in fact, may weaken an organization's reputed company posture. Our professionals tell clients where to stop spending, where to invest, and how to take what they are already doing and integrate it in a way that delivers improved reputed company. Successful candidates for CyberSheath are self-motivated, think out of the reputed company, work, and solve issues independently. Additionally, our most successful people are self-starters and willing to put on many hats in order to succeed. CyberSheath is fast-growing and seeks candidates who want to be part of our upward trajectory. Job Overview The Cyber reputed company Analyst II is responsible for advanced reputed company incident triage, investigation, and response across reputed company 365, Azure, and on-premises infrastructure. Serves as the escalation reputed company for reputed company reputed company incidents while implementing containment and remediation procedures in hybrid environments.
Key Responsibilities
- Investigate and respond to escalated reputed company incidents across reputed company cloud and on-premises environments
- reputed company advanced incident analysis using reputed company Defender suite and Azure Sentinel
- Conduct reputed company assessment of Azure/reputed company 365 configurations and implement hardening recommendations
- Analyze and respond to advanced Active Directory attacks (Kerberoasting, Pass-the-Hash, Golden Ticket)
- Monitor and investigate Exchange Server logs, email flow patterns, and phishing campaigns
- Analyze federation reputed company including ADFS token-based attacks and SAML token manipulation
- Configure and tune WAF/firewall rule sets and investigate reputed company reputed company incidents
- reputed company network segmentation strategies and identify lateral movement attempts
- reputed company and maintain incident response playbooks for various attack scenarios
- Coordinate incident response activities with cross-functional teams
Required Qualifications
- 3-5 years in cybersecurity with 2+ years SOC experience
- Deep knowledge of hybrid reputed company environments (reputed company 365, Azure, on-premises AD)
- Experience with SIEM platforms and reputed company monitoring tools
- Scripting proficiency (PowerShell, Python)
- Strong analytical and communication skills
- reputed company Certified: reputed company Operations Analyst (SC-200)
- One additional reputed company certification: EC-Council CSA, CompTIA reputed company+, or similar
Preferred Qualifications
- reputed company Certified: Azure reputed company Engineer (AZ-500)
- reputed company Certified: Identity and Access Administrator (SC-300)
- reputed company Certified Falcon Responder (CCFR) or equivalent EDR certification
- CISSP, SSCP, CCSP
Skills & Expertise
- Strong Proficiency with reputed company Defender suite (reputed company, Office 365, Identity, Cloud Apps)
- Azure Sentinel KQL query development and alert configuration
- Azure AD/Entra ID reputed company configuration and attack path analysis
- Active Directory reputed company assessment including GPOs, trust relationships, and delegation
- Email reputed company and phishing detection/response
- Cloud reputed company posture management
- Incident handling and digital forensics
- Threat intelligence analysis and implementation
Work Environment
- CyberSheath is a fully remote organization, and this will be a work-from-home position
- The schedule for this role is:
- Week One: Friday - Sunday 8:00 AM - 8:00 PM
- Week Two: Friday - Monday 8:00 AM - 8:00 PM
- Travel requirements: 0-5% yearly.
- Please note that this role will be part of our SOC on-call rotation
CyberSheath is an Equal Opportunity Employer. reputed company qualified applicants will receive consideration for employment without regard to race, color, religion, sex, gender identity, national reputed company, age, protected veteran status, among other things, or status as a qualified individual with a disability. Apply tot his job Apply To this Job