Offsite Security Analyst Ii Lead

Proficio is an award-winning managed detection and response (MDR) services provider. We provide 24/7 security monitoring, investigation, alerting and response services to organizations in healthcare, financial services, manufacturing, retail and other industries. Proficio has been highlighted in Gartner’s Market Guide for Managed Detection and Response Services for the last three consecutive years. We have a track record of innovation. Proficio invented the concept of SOC-as-a-Service. We were the first MSSP to provide automated response services and the first in our space to provide a risk scoring dashboard.

Our typical client is a medium to large-sized organization that lacks the in-house resources to address the challenges of a rapidly changing threat landscape. The difficulty of hiring and retaining cybersecurity professionals are widely understood but our prospective clients also struggle to effectively harness technology and build hardened processes.

While Proficio has developed a unified service delivery platform designed to meet the needs of the most demanding clients, what sets us apart is the quality and passion of our people. We believe the SOC of the Future will meld the creativity of human intelligence with the power of advanced technologies like AI.

**Summary**:
The Offsite Security Analysts are the core of our SOC-as-a-Service operations. They are on the front line receiving and triaging alerts from our SOC analysts. They operate on a dedicated client while utilizing multiple consoles and technologies. Our Security Analysts have strong network and security knowledge, are strong problem solvers, and work under time pressure to quickly analyze and report security threats in our client’s networks.

The Lead Offsite Security Analyst will be reporting directly to the SOC director, he/she will be working closely with the client’s cybersecurity threat operation management team. The Lead Offsite Security Analyst core responsibility revolves around managing a highly trained and disciplined team of security analysts to tackle real-time cyber security incidents and ad-hoc tasks assigned by the client.

**Core Skills**:

- Threat Monitoring - actively monitoring our SIEM for alerts, then identify the root cause of the alert and provide suggested fixes.
- Threat Analysis: Utilize knowledge of internal and external information vulnerabilities and match those to real-world cyber-attacks.

**Advanced Skills**:

- Incident Response: address and manage the aftermath of a security breach or cyberattack with a focus on limiting damage, reducing recovery time/costs, and returning systems to normal.
- Threat Intelligence: creation of the information our organization uses to understand the threats that have, will, or are currently targeting our customers. This information is then used to prepare, prevent, and identify cyber threats.

DevOps: integrating security practices to bridge traditional gaps between IT and security while ensuring fast, safe delivery of services
**Requirements**:

- Bachelor’s degree in information technology, Computer Engineering or equivalent.
- At least 5 - 8 years of relevant experience preferably in financial services or asset management industries, with a minimum of 5 years of working experience in a cybersecurity function such as Cyber Security Operations, Incident Response, Forensic Investigation, Threat Intelligence or Vulnerability Management.
- Senior stakeholder management and working across various parts of the organization.
- At least 3 years of experience in managing a cyber security operations function within an organization.
- Professional qualification such as SANS, CISSP / CEH will be advantageous.
- Network security or IT certifications would also be advantageous.
- Knowledge of network concepts, network protocols, and network security methodologies.
- Knowledge of network technologies in one or more areas such as perimeter firewalls, demilitarized network zones (DMZ), encryption, encoding, network virtualization or wireless networks.
- Knowledge of enterprise IT networks, cybersecurity threats and vulnerabilities at the network layer.
- Knowledge of network traffic analysis methods such as packet analysis and analyzing network flow data.
- Knowledge of network detection and response (NDR) or similar capabilities.
- Experience in incident response and network forensics is an advantage.
- Demonstrates good investigative technique and practice.

**Benefits**
- Opportunity to work in a progressive organization with structured training and roadmap for success
- Lunches and fun employee activities
- Experience in one of the hottest IT industries today

Proficio is an EOE employer.