Threat Response Analyst

| Greenwood Village

Who We Are

Founded as BEW Global in 2002, InteliSecure is an internationally recognized leader in critical asset protection. The company was built on providing a portfolio of information and network security services to help organizations protect their most critical assets from internal and external threats.

InteliSecure has served more than 500 customers and currently protects more than 1,000,000 users in 25+ countries around the world. We currently offer Professional Services, Security Assessments and Managed Services for data and threat protection. Our client base includes many industry leading Fortune 500 companies and spans across major verticals including healthcare, finance, insurance, legal, and manufacturing.[BF1]  

Our Industry Firsts

  • One of the first 10 organizations recognized as an ISO 27001 Associate Consultant by the BSI Group (2006)
  • First MSSP to offer managed DLP services (2008)
  • First MSSP to combine machine data with heuristics-based analytics for content and context based approach (2008)
  • First MSSP with a focus on critical asset protection programs across all services – data and threat protection (2013)
  • First MSSP to operationalize synthetic transaction testing as part of core services (2015)

The Role

The Threat Response Analyst (TRA) will be responsible for acknowledging and researching ALL Security Incident Event Management (SIEM) alarms during their shift. 

They will perform historical correlation analysis on incidents and events generated inside of the SIEM environments.  They will also be responsible for following case development and escalation workflows when activity needs to be escalated to the client and provide tuning recommendations to the Client Service Manager

 

Ensure all tasks performed adhere to the firm’s ISO 27001 Information Security Management System (ISMS).  This includes participation in annual information and network security training and acceptance of spot checks on an ad hoc basis to guarantee that InteliSecure is constantly improving upon the organization’s ISMS.  Each member of our team must understand the importance of the ISMS and the subsequent handling of client data.

DUTIES & ESSENTIAL JOB FUNCTIONS:

  • The Threat Response Analyst will be responsible for acknowledging and researching ALL Security Incident Event Management (SIEM) alarms during their shift. 
  • The Threat Response Analyst will be responsible for following case development and escalation workflows when an alarm needs to be escalated to the client.
  • The Threat Response Analyst will be responsible for performing historical correlation analysis on incidents and events generated inside of the SIEM environments.  They will also be responsible for following case development and escalation workflows when of note activity needs to be escalated to the client. 
  • The Threat Response Analyst will be responsible for providing rule and alarm tuning recommendations to the SIEM engineering team while also notifying the Client Service Manager.

OTHER FUNCTIONS AND RESPONSIBILITIES:

  • Perform other duties as assigned

QUALIFICATIONS:

  • Bachelor’s Degree in Information Technology, Information Security/Assurance, and Engineering or related field of study; or at least two years of related experience and/or training; or equivalent combination of education and experience preferred.
  • Associate’s Degree or equivalent from two-year College or technical school in Information Technology, Information Security/Assurance, Engineering or related field of study; at least 2 years of related experience and/or training; or equivalent combination of education and experience required.
  • Experience utilizing the Cyber Kill Chain
  • Experience in gathering and managing threat intelligence
  • Ability to fully utilize MS Office products required
  • Experience working with interpreting, tuning, searching and manipulating data within SIEM or other related security tools
  • Ability to present a recommended remediation strategy to client in professional format
  • Knowledge of log formats and ability to aggregate and parse log data for syslog, http logs, DB logs for investigation purposes
  • Knowledgeable and experienced using basic regular expressions

HIGHLY PREFERRED:

  • Linux administration experience
  • Shell scripting experience e.g. BASH, CSH, KSH
  • Security + certification
  • CEH
  • Experience using open source tools such as Remnux, Kali, VirusTotal, IPVoid, TCPdump MetaSploit, etc
Read Full Job Description

Location

5613 DTC Parkway, Suite 1250 , Greenwood Village, CO 80111
5613 DTC Parkway, Suite 1250 , Greenwood Village, CO 80111

Perks of working here

401(K) Matching
401(K)
Casual Dress
Commuter Benefits
Dental
Fitness Subsidy
Happy Hours
Health Benefits
Parking
Tuition Reimbursement
Vision
More Jobs at InteliSecure5 open jobs
All
Developer + Engineer
HR
Developer + Engineer
InteliSecure
Developer + Engineer
InteliSecure
Developer + Engineer
InteliSecure
Developer + Engineer
InteliSecure

Get notified
when new
jobs pop up.