Security Analyst – Tier 2, 2nd shift

Job Description:

• Analyze and validate investigations completed by the AI Agents for accuracy, completeness, and risk
• Correlate data from various data sources including cloud, endpoint, identity, network, etc. to understand the full picture of a malicious activity
• Investigate malicious activity that the 7AI Agents responded to and understand the complexity of the attack that was stopped including the risk that was prevented for customers
• Use our advanced AI Agents to hunt in customer environments to detect and remediate emerging threats, ultimately contributing to detections that will be folded back into the product
• Assist customers with ongoing threat monitoring, triage, and prioritization of security alerts as needed but especially during incidents to resolve threats and secure the environment
• Proactively identify potential threats and anomalies in customer environments by reviewing logs and malicious findings
• Utilize your supreme communication skills to engage with customers who vary in their level of technical depth and focus (from SOC analysts to CISOs)
• Architect processes while we build out this elite organization to scale the operation sustainably while maintaining consistent quality
• Collaborate with the Engineering and Product teams, providing feedback on the customer experience and assist in optimizing and tuning the AI platform
• Stay current with emerging cybersecurity trends, vulnerabilities, and new attack techniques, especially the field of AI-driven attacks

Requirements:

• 2+ years of experience in cyber security operations
• Comfortable with on call weekend shifts as needed and working on a 4PM-Midnight PST shift
• Hands-on experience with investigating alerts and across multiple sources (endpoint, network, identity, email, cloud, etc.)
• Strong understanding of security monitoring tools (XDR, SIEM, IDS/IPS, IDP, etc.)
• Familiarity with log telemetry concepts
• Experience analyzing and investigating security alerts from multiple sources, including intrusion detection systems, network monitoring tools, and endpoint protection platforms
• Working knowledge of common attack techniques and frameworks (MITRE ATT&CK) and incident triage methodologies
• Strong analytical and problem-solving skills, with the ability to verify AI-driven analysis and make independent security decisions
• Data querying experience with SIEM querying technologies (SPL, KQL, FQL, SQL, etc) and familiarity with log / telemetry concepts
• Familiarity with Malware Analysis methods
• Great interpersonal skills with a service oriented mindset
• Proven track record of successfully collaborating in a team.

Benefits:

• Health insurance
• 401(k) matching

Apply tot his job Apply To this Job