Threat Analyst 2

This is a fully remote position, open to applicants in Canada.

📋 Description

• Conduct investigations and analyze logs along with security-related events using Sophos tools.

• Detect and respond to cyber threats that arise within customer environments.

• Effectively communicate and document findings for various customer audiences, including both technical and executive teams.

• Ensure follow-up with customers until issues are resolved and promote continuous improvement by offering detailed recommendations to mitigate risks in customer environments.

• Acknowledge and fulfill inbound customer requests while engaging with customers through different communication channels.

• Collaborate with and support core security and threat response teams.

• Proactively research emerging Indicators of Compromise/Attack, exploits, and vulnerabilities with the goal of operationalizing findings to enhance customer protection.

⛳️ Requirements

• Availability to work outside of standard business hours, including weekends and holidays, as our MTR service operates 24x7x365.

• Strong troubleshooting and analytical skills, demonstrating the ability to think creatively.

• Customer service-focused with exceptional written and verbal communication abilities.

• Ability to thrive in both a team setting and independently.

• A strong passion for information technology and cybersecurity.

• An innate curiosity and quick learning capability for new skills.

• An innovative mindset, motivated to contribute to a team delivering a premier cybersecurity service.

• At least 3+ years of experience in a SOC environment or a computer security team within an IT context.

• Experience in threat hunting.

• Proficiency in endpoint and network security monitoring.

• Experience in administering and supporting Windows OS (both workstations and servers) and familiarity with one of the following: Apple or Linux-based operating systems (e.g., XP, Windows 7, 2003, 2008, OS X).

• Understanding of common adversary tactics and techniques, including obfuscation, persistence, and defense evasion.

• Familiarity with the Mitre ATT&CK framework.

• Knowledge of incident response procedures.

• Basic understanding of network traffic analysis, including TCP/IP, routing, switching, and protocols.

• Basic understanding of Windows event log analysis.

🏝️ Benefits

• Sophos embraces a remote-first working model, making remote work the primary option for the majority of employees.

• Employee-led diversity and inclusion networks that foster community and provide education and advocacy.

• Annual charity and fundraising initiatives along with volunteer days for employees to engage with local communities.

• Global employee sustainability initiatives aimed at reducing our environmental impact.

• Worldwide fitness and trivia competitions to promote mental and physical wellness.

• Global wellbeing days to allow employees to relax and recharge.

• Monthly wellbeing webinars and training sessions to support employee health and wellbeing.