All roles

Open role

Threat Analyst- 2nd Shift | Remote, USA

Remote · Ethiopia Full-time

This position will be fully remote and can be hired anywhere in the continental U.S. This team provides 24/7 support. This role will be Fri-Sat-Sun-Mon 2:00pm-12:00am Eastern. U.S. Citizenship required. Due to client requirements we cannot accept dual citizenship for this particular role. The Threat Analyst will provide intrusion/incident monitoring and detection utilizing customer provided data sources, audit, and monitoring tools at both the government and enterprise level. The Threat Analyst will work closely with our Technology Analysts and Architects to service customers. How you’ll make an impact

  • High level professional writing experience regarding documenting and reporting on potential security incidents identified in customer environments and timeline of events.
  • Work with partners to maintain an understanding of security threats, vulnerabilities, and exploits that could impact systems, networks, and assets.
  • Act as a coordinator for security events that require urgent response, containment, and remediation.
  • Provide analysis on various security enforcement technologies including, but not limited to SIEM, anti-virus, content filtering/reporting, malware prevention, firewalls, intrusion detection systems, web application firewalls, messaging security platforms, vulnerability scanners etc.
  • Perform knowledge transfers, document, and train clients regarding mitigation of identified threats.
  • Provide ongoing recommendations to other peers and customers on tuning and best practices.
  • Actively research current threats and attack vectors being exploited in the wild
  • Actively work with other analysts and perform investigations on escalations.

What we’re hiring for

  • U.S. Citizenship required. Due to client requirements we cannot accept dual citizenship for this particular role.
  • Three or more years of full-time professional experience in the Information Security field
  • Experience working in a Security Operations Center (SOC), Managed Security Service (MSS), or enterprise network environment as a point of escalation.
  • Excellent time management, reporting, and communication skills including customer interactions and executive presentations.
  • Data analysis using SIEM, Database tools, and Excel.
  • Experience troubleshooting security devices and SIEM.
  • Ability to create and maintain content within SIEM environments and make recommendations to clients to better their visibility.
  • IDS monitoring/analysis with tools such as Sourcefire and Snort
  • Experience with SIEM platforms preferred (QRadar, LogRhythm, McAfee/Nitro, ArcSight, Splunk) a plus.
  • Direct (E.g., SQL Injection) versus indirect (E.g., cross-site scripting) attacks
  • Experience with the following attacks: Web Based Attacks and the OWASP Top 10, Network Based DoS, Brute force, HTTP Based DoS, Denial of Service, Network Based / System Based Attacks.
  • Familiarity with SANS top 20 critical security controls
  • Understand the foundations of enterprise Windows security including Active Directory, Windows security architecture and terminology, Privilege escalation techniques, Common mitigation controls and system hardening.
  • Anti-Virus (AV) and Host Based Intrusion Prevention (HIPS)
  • Experience in monitoring at least one commercial AV solution such as (but not limited to) McAfee/Intel, Symantec, Sophos, or Trend Micro
  • Ability to identify common false positives and make suggestions on tuning.
  • Understanding of root causes of malware and proactive mitigation
  • Propagation of malware in enterprise environments
  • Familiarity with web-based exploit kits and the methods employed by web-based exploit kits.
  • Familiarity with concepts associated with Advanced Persistent Threats and “targeted malware.”
  • Experience and understanding of malware protection tools (FireEye) and controls in an enterprise environment.
  • Covert channels, egress, and data exfiltration techniques
  • Familiarity with vulnerability scoring systems such as CVSS.
  • Basic understanding of vulnerability assessment tools such as vulnerability scanners and exploitation frameworks

What you can expect from Optiv

  • A company committed to championing Diversity, Equality, and Inclusion through our Employee Resource Groups.
  • Work/life balance
  • Professional training reso

More open positions

2nd shift - call center representative (58728)

Work from home Full-time role

Client & Vendor Accounts Liaison - 2nd Shift Remote

Work from home Full-time role

Experienced Virtual Customer Service Representative - 2nd Shift at careerzynith

Work from home Full-time role

Contact Center Representative- 2nd Shift (100% Remote Opportunity)

Work from home Full-time role

Advanced Customer Support Technician - 2nd Shift

Work from home Full-time role

Experienced Digital Branch Customer Service Supervisor – Remote Opportunity at careerzynith

Work from home Full-time role

Corporate Event Planning Expert

Work from home Full-time role

[Remote] Key Account Manager II

Work from home Full-time role

Remote Customer Support Representative – Subscriber Experience & Technical Assistance for careerzynith Streaming Platform

Work from home Full-time role

Remote Content Tagger & Data Entry Specialist – Metadata Management for Global Streaming Platform – $72,000/Year – careerzynith

Work from home Full-time role

Remote Customer Support Representative – Healthcare Services & Patient Assistance at careerzynith

Work from home Full-time role

Remote 3rd Shift Customer Service Representative - Financial Services | Overnight Support Specialist (11PM-7AM) with Training

Work from home Full-time role

Medical Value & Access Director CVS/AETNA

Work from home Full-time role

Strategy & Operations - Quality Associate Director/Director

Work from home Full-time role

Search Engine Marketing (SEM) Specialist

Work from home Full-time role

Cvs Part Time Remote Careers (Remote Data Entry Jobs) - Hiring Now

Work from home Full-time role

Accountant - 100% Remote

Work from home Full-time role

Fully Remote - Licensed Clinical Social Worker (LCSW) in Savannah, GA

Work from home Full-time role

Azure Cloud Engineer

Work from home Full-time role

Corporate Staff Accountant-Lifestyle Brands-REMOTE

Work from home Full-time role

Remote Customer Service Advisor – Data Entry, Technical Support & Client Experience Specialist for careerzynith

Work from home Full-time role