Senior MDR Analyst (M-F 12 PM - 8 PM ET)
Blackpoint Cyber is the leading provider of world-class cybersecurity threat hunting, detection and remediation technology. Founded by former National Security Agency (NSA) cyber operations experts who applied their learnings to bring national security-grade technology solutions to commercial customers around the world, Blackpoint Cyber is in hyper-growth mode, fueled by a recent $190m series C round.
Company Culture
On this team, we value high-quality execution, ownership, and strong morals. With us, principles are never tested, and we are proud to always do right by our customers. If you’re a driven professional with a passion for learning and contributing towards the best, then Blackpoint welcomes you. Our team is energetic and collaborative, maintaining a high-performance culture and enabling growth through overcoming challenges in the modern cyberthreat landscape.
Please only apply if you are able to work Monday - Friday from 12:00 PM - 8:00 PM ET
How You'll Make an Impact:
Analyze and evaluate anomalous network and system events in a 24x7x365 Security Operation Center (SOC) environment via conducting lead-less threat hunting.
Collaborate with MDR Analysts to research and investigate emerging cyber security threats; become an escalation point of contact for advanced intrusion analysis.
Develop Incident analysis reports and work across business units and customers to bring issues to a close.
Help design and build operational processes and procedures to improve overall SOC efficiency.
Provide actionable threat and vulnerability analysis based on security events for many independent customer environments.
Build test lab environments to research emerging techniques and make contributions to the internal and external knowledge development of threat operations.
Review sandbox technologies for additional IOCs uncovered from artifacts uncovered during analysis.
What you'll Bring:
Five (5+) years of experience in an information security role. Progressive relevant training and/or certification may be substituted for one (1) year of the experience requirement
Experience working in a Security Operations Center (SOC)
Two (2+) years of experience with triaging endpoint events from EDR, NGAV, and supporting the Incident Response (IR) process
Deep knowledge on assessing threat indicators in a Windows Environment (e.g. Malware/Malicious Anomalies/Abnormal network Activity/Root Level Compromise, Forensic Artifacts, etc.)
Robust understanding of at least two of the following: Windows, Linux or OSX;
Familiarity with ELK stack (Dashboards, Logstash Config, Searching) Scripting / Programming with Powershell, Python, and Go
Familiarity with AWS services such as EC2, S3 and IAM and Azure/M365
Experience in developing, refining, and performing leadless threat hunting analysis to uncover new or potential incidents and report on results
Excellent problem solving, critical thinking, and analytical skills with the ability to deconstruct issues (hunting anomalous pattern detection)
Excellent written and verbal communication skills to effectively summarize and present technical findings to both technical and non-technical audiences
Bonus:
Bachelor’s Degree in Computer Science or related technical discipline
Network/System Administration and/or Engineering
Deep forensic knowledge of Windows, Mac OS and/or Linux
Experience in Digital Forensics and Incident Response a plus
Malware Analysis (Behavioral and/or Static analysis- IDA, Cuckoo Sandbox, x86/x64 Debugging) Pentesting/Red/Blue Team
Capture The Flag (CTF) Development
Blackpoint Cyber welcomes and encourages applications from qualified individuals of all races, colors, religions, sex, sexual orientation, gender identity or expression, national origin, age, marital status, or any other legally protected status. We are committed to equality of opportunity in all aspects of employment. For eligible employees in the US, Blackpoint offers competitive Health, Vision, Dental, and Life Insurance plans, a robust 401k plan, Discretionary Time Off, and other minor perks.
At Blackpoint Cyber, we are on the lookout for a motivated and experienced Senior MDR Analyst to join our Security Operations Center (SOC) team. This role is perfect for those who are passionate about cybersecurity and enjoy diving deep into the intricacies of threat detection and analysis. In this dynamic position, you'll work Monday through Friday from 12 PM to 8 PM ET, where your evenings will be spent tackling some of the most pressing cyber threats facing our clients. With your background in information security, particularly in threat hunting and incident response, you'll analyze and evaluate anomalies in network behavior and collaborate closely with fellow analysts to address emerging threats. Your talents in developing well-crafted incident analysis reports will bridge the gap between our technical teams and clients, ensuring clear communication on resolution efforts. You’ll also play a crucial role in designing operational processes to enhance our SOC's efficiency, contributing to a culture that values high-quality execution and integrity. We pride ourselves on creating a workspace that fosters growth, teamwork, and knowledge sharing. If you bring at least five years of experience and have a strong foundation in Windows, Linux, or OSX environments, along with excellent analytical and communication skills, then Blackpoint Cyber is an exciting place for you to continue your career and make an impact in the ever-evolving cybersecurity landscape.
Subscribe to Rise newsletter
🔮
Hi, I'm Risa! Your AI Career Copilot
you, just ask me below!
Sign up for our weekly
newsletter of fresh jobs
