L1 Security Analyst (Onsite in Dallas, Texas)

L1 Security Analyst (Onsite in Dallas, Texas) Carrollton, TX Job Details $50,000 - $60,000 a year 21 hours ago Qualifications Penetration testing System administration Vulnerability assessment Computer Science Procedural guides IT system monitoring Research Mid-level Threat detection & response Patch management Information Security Bachelor's degree CompTIA Network+ Incident Investigation IBM QRadar Vulnerability management Network monitoring Log analysis CompTIA Security+ Bachelor's degree in computer science Incident response implementation Kali Linux Python Proxy servers Comp

TIA A+ IT

security monitoring Full Job Description We are looking for an L1 Security Analyst to provide technical assistance to our customer in the Dallas area

Job Description:

Cyber Security Analyst responsibilities will include network security analysis, monitoring, and incident response, as well as maintenance and configuration of security tools. Security Analysts work with the latest technologies to detect, analyze, and limit intrusion and security events.

Duties/Responsibilities:

Monitor an organization's event and network logs for security breaches Analyze and respond to security alerts and incidents Investigate and prepare reports that document security breaches Maintain records of security monitoring and incident response activities Work with the security team to perform tests and uncover network vulnerabilities Fix any detected vulnerabilities to maintain a high-security standard Develop security standards and best practices for the organization Research the latest information technology (IT) security trends Recommend security enhancements to management or senior security and IT staff

• Weekly On-call rotation for critical events after-hours.
• Prepare and send frequent security advisory emails and monthly patch release advisory notifications to all IT point of contact.
• Prepare security documents, runbooks, policies, and procedures.

Qualifications and Skills:

• CompTIA Security+ Certification is required for this position. Having CompTIA A+ or CompTIA Network+ or any other Information Security certification is a plus. Good hands-on experience and knowledge in at least one enterprise SIEM platform (e.g. AlienVault, QRadar, LogRhythm, Rapid7, etc.).
• Hands-on experience analyzing high volumes of logs, network data (e.g. Netflow), and other attack artifacts supporting incident investigations.
• Hands-on experience in addressing Phishing incidents.

Hands-on experience with Threat hunting. Running Phishing simulation campaigns and security awareness training. Understanding of TCP/IP, common networking ports and protocols, traffic flow, system administration, OSI model, defense-in-depth, and common security elements. Understanding of firewalls, proxies, antivirus, EDR, MDR, content filtering, and IDS/IPS concepts. Understanding of Vulnerability Management and ability to identify and mitigate vulnerabilities. Understanding of patch management with the ability to deploy patches on time while understanding business impact. Familiar with Kali Linux, Ubuntu, or any Linux OS. Familiar with Python or any scripting language.

Preferred Qualifications:

Experience with computer network penetration testing and techniques is a plus Bachelor's degree in Information Security or Computer Science, or a related field.