Gulfstream Aerospace

Sr. Cyber Threat Analyst

PayCompetitive
LocationSavannah/Georgia
Employment typeFull-Time

This job is now closed

Apply to similar jobs

  • Job Description

      Req#: 214654

      Sr. Cyber Threat Analyst in GAC Savannah


      Unique Skills:

      *This position is open to shift work, 1st, 2nd, or 3rd*

      The following attributes are all important and experience and/or working knowledge will be a plus.

      Experience in other fields will be considered if skills are transferable.

      Looking for a seasoned cyber security professional who remains current on the evolving cyber security environment and technologies.

      Experience with UEBA, EDR, XDR, DLP, SIEM and SOAR concepts/technologies

      Deep understanding of the life cycle of cybersecurity threats, attacks, attack vectors and methods of exploitation with an understanding of intrusion set tactics, techniques and procedures (TTPs)

      Experience in Intelligence Driven Defense, Cyber Kill Chain methodology, and/or MITRE ATT&CK framework. Threat Hunting

      Strong analytical and troubleshooting skills

      Experience with vulnerability management tools and /or programs

      Experience with reverse engineering malware

      Experience in the area of Cloud Security - CCSP or CCSK a plus

      Experience securing MS AD/Azure environments

      Experience in the digital forensics field

      Experience in Networking and/or Firewalls a plus

      Willing and capable of training team members

      Python programming

      (These positions include shift work required to cover 24x7 Security Operations, Position is on site with possibility of some hybrid remote work, but primary location is on site)


      Education and Experience Requirements

      Bachelor's Degree or equivalent combination of education and experience to successfully perform the essential functions of the job. Degree in information security, Computer Sciences or Technology related field preferred. 5 years of related experience.

      Position Purpose:

      The Cyber Threat Analyst Sr. conducts computer forensic investigations, data recovery, and electronic discovery. The analyst will perform monitoring and analysis of security systems data from multiple security components including but not limited to firewalls, IPS, VPN, web filtering, SIEM systems, host based intrusion detection, email filtering etc. The analyst supports the Threat Detection team in escalations and will participate on an incident response team.

      Job Description

      Principle Duties and Responsibilities:

      Essential Functions:
      1. Conducting forensic collections of electronic evidence including information system and network devices for legal, human resources, ethics, and information security.

      2. Utilizing forensic software/hardware applications to analyze digital media; determining solutions for recovery of potentially relevant information.

      3. Examining and analyzing network traffic, related applications and operating systems to identify potential threats, anomalous or malicious activities to network resources; validating Intrusion Detection System alerts.

      4. Analyzing security data to effectively detect intrusions & attempted intrusions and to initiate and engage the proper resources to mitigate the risk .

      5. Improving documentation and reporting processes for cyber incidents.

      6. Assisting in the design and implementation of the organizational information security solutions, and continuously enhancing information security approaches and methodologies.

      7. Participating in an incident response team in addressing and managing the aftermath of a security breach or attack.

      8. Identifying, analyzing, and reporting threats or hidden events within the enterprise network by using defensive measures and information collected from a variety of sources to protect data, information systems, and networks.

      9. Provides technical and administrative support and performs a range of investigations of information security systems.

      10. Collects, analyzes and presents digital-related evidence in support of cyber investigations.

      11. Perform analysis and investigations using data from firewalls, IPS, VPN, web filtering, SIEM, IDS, email filtering and forensic tools.

      Additional Functions:
      1. Able to be on call for incidents and problems; also able to work different shifts. .

      2. Able to travel as needed. .

      3. Proficient in the use of incident response and forensics tools such as FTK, Encase, and Cellebrite. .

      Perform other duties as assigned.

      Other Requirements:
      1. Must have an understanding of cyber forensics, networking, and information security technologies and be able to demonstrate outside-the-box thinking and continuous learning.

      2. Experience with the following operating systems: Windows, OSX, IOS, Linux or UNIX.

      3. Security Certification such as CISSP, CEH, ACE, EnCE, CCE, Security+ etc. is a plus.

      A credit history check from a national credit bureau will be conducted for all candidates for this position including new hires and current employees seeking promotion or transfer.

      Additional Information

      Requisition Number: 214654

      Category: Information Systems

      Percentage of Travel: Up to 25%

      Shift: First

      Employment Type: Full-time

      Posting End Date: 09/25/2023

      Equal Opportunity Employer/Veterans/Disabled.

      Gulfstream does not provide work visa sponsorship for this position, unless the applicant is a currently sponsored Gulfstream employee.

      Legal Information | Site Utilities | Contacts | Sitemap
      Copyright © 2020 Gulfstream Aerospace Corporation. All Rights Reserved. A General Dynamics Company .

      Gulfstream Aerospace Corporation, a wholly-owned subsidiary of General Dynamics (NYSE: GD), designs, develops, manufactures, markets, services and supports the world's most technologically-advanced business jet aircraft

  • About the company

      Gulfstream designs, develops, manufactures, markets, and services business jet aircraft.

Notice

Talentify is an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or protected veteran status.

Talentify provides reasonable accommodations to qualified applicants with disabilities, including disabled veterans. Request assistance at accessibility@talentify.io or 407-000-0000.

Federal law requires every new hire to complete Form I-9 and present proof of identity and U.S. work eligibility.

An Automated Employment Decision Tool (AEDT) will score your job-related skills and responses. Bias-audit & data-use details: www.talentify.io/bias-audit-report. NYC applicants may request an alternative process or accommodation at aedt@talentify.io or 407-000-0000.

Other job opportunities

principal threat intelligence analyst remote
cyber remote jobs
cyber security jobs london remote
cyber security jobs remote
cyber security remote jobs
Human Resources remote jobs
More information about Gulfstream Aerospace