IRG is seeking a Cyber Security Analyst with XDR or SOAR Experience for its client at Bismarck, ND Role Cyber Security Analyst with XDR or SOAR Experience Location Bismarck, ND Duration 5+ months Open to Out of State Job Description The Cyber Security Analyst I will work collaboratively to identify, investigate, and mitigate security incidents, develop, maintain, and follow incident response processes and procedures, and participate in response and recovery activities as a member of the Cyber Analysis and Response team The analyst should be able to demonstrate proficiency and in-depth understanding of cyber attack processes and phases, network and endpoint security principles, operating systems, network and application protocols, incident handling and investigation processes. The analyst is expected to research and maintain proficiency in current threats and attack tactics, techniques, and procedures. The analyst should have experience providing incident response and remediation support and must be comfortable acting as a liaison between the Cyber Operations Center (CyOC) and other teams and stakeholders during incidents.
The analyst should have a natural curiosity, organizational skills, the ability to think abstractly and to contextualize large data sets, and superior communication skills. Minimum Qualifications Bachelor's degree in computer science, computer information systems, cyber security or related field and one year of current and progressive work experience within a cyber security role. Associate degree in a computer science, computer information systems, cyber security or related field and three years of current and progressive experience as described above.
Five years of current and progressive experience as described above. Preference given to those with experience with Extended Detection and Response (XDR) or Security Orchestration, Automation, and Response (SOAR) platforms. Key Duties Monitor security events and alerts to identify and respond to incidents that occur on the network or endpoints.
Perform initial research and context gathering around incidents to determine their severity level and escalate as necessary. Conduct detailed analysis of security incidents to determine the appropriate mitigation, response, andor recovery actions that should be taken based on established playbooks or analyst knowledge. Perform mitigation, response, andor recovery actions and coordinate with interfacing teams as necessary to resolve security incidents.
Provide feedback on processes, procedures, and controls for continuous improvement of the incident response program. Document evidence collected and actions taken during the incident response process within the case management system. Collaborate with other teams to assess risk and develop strategies to improve the enterprise security posture.
Apply At Please send your resume and a cover letter to Susmita Sahu (Susmita at irginc dot net) at or . You may call Susmita 573-797-9902.