Job Description

• Support and enhance the Managed Detection and Response (MDR) program by monitoring, analyzing, and responding to threats, utilizing a variety of analytical tools, data science methodologies, and incident handling guidelines in line with NIST standards.
• Proactively identify threats by analyzing network traffic and logs (e.g., host, network, firewall, IDS) to maintain situational awareness and provide enterprise visibility. Create and recommend mitigation strategies for identified vulnerabilities across networks, systems, software, and hardware.
• Collaborate with internal and external stakeholders for critical security operations, incident handling, and applying security controls. Work closely with the Engineering and MDR teams to manage access controls and implement SIEM tools for threat detection and response.
• Conduct digital evidence recovery and analysis for legal or organizational needs. Integrate stakeholder feedback into recovery action plans and customize communication to address specific audience concerns.
• Play an active role in cyber incident response, from artifact collection to mitigation of potential incidents, working with managers, responders, and cybersecurity teams to effectively communicate the event's impact and coordinate action plans.