We Help the World Be Everyday Ready™
Today's threatscape is relentless. So are we. At Cyderes, we build practical Identity & Access Management (IAM), Exposure Management, and risk programs, helping organizations stop active threats fast with Managed Detection & Response (MDR) that integrates with existing tools. Powering it all is Meridian, our entity fabric that connects identities, assets, and access into one trusted reality. Augmented by AI and driven by seasoned operators, our tireless global team arms organizations with the people, platforms, and perspectives they need to conquer whatever tomorrow throws their way.
🏆 Great Place to Work® Certified™ | United States | Canada | United Kingdom | India
The Security Analyst II is responsible for providing security solutions to clients. The Security Analyst II will demonstrate the capacity to consistently meet and exceed client expectations representing and reinforcing the Cyderes brand through positive interaction with other teams within the company. Perform deep dive investigations into security threats, understand and implement MITRE mapping to identify customers current security posture.
Responsibilities:
Perform initial triage and advanced analysis tasks across endpoint, SIEM, server, and network infrastructure.
Perform proactive security investigations and searches on client environment to detect malicious activities
Perform Incident investigations and deep dive analysis on detected threats.
Understand and identify indicators of attack and compromise in alerts, by hunting through data, and by reviewing past investigations.
Have full understanding of the MITRE ATT&CK framework. Mapping clients' use cases to tactics and techniques.
Triage, review, and provide log data for more insight and recommendations to escalate through SIEM.
Effective oral communications and writing/drafting skills.
Maintain up to date knowledge and understanding of the current threat landscape.
Requirements:
3 or more years of progressing/in-depth IT security experience.
Demonstrate experience in using Endpoint Detection and Response software (SentinelOne, CrowdStrike, Defender, etc.)
Advanced knowledge of SIEM platform (Splunk)
Experience in SOC and Incident Response activities.
Understanding of SIEM correlation, use cases and events.
Should hold at least one industry certification Sec+, CEH, SC 200, Any Cloud Certification and Cloud Security Fundamentals.
Basic scripting or development experience would be an added advantage.