About the position
The Incident Response Analyst – Weekend Shift Lead (Tier 2) at MindPoint Group is responsible for leading a team in the Security Operations Center (SOC) to monitor, detect, and respond to cybersecurity threats. This role involves overseeing incident analysis, reporting, and providing mentorship to junior analysts while ensuring effective coverage during night shifts. The analyst will engage in complex investigations, manage escalations, and support the development of security strategies to protect enterprise networks and systems.
Responsibilities
• Serve as the first point of escalation for triage of complicated alerts and investigation of incidents on your shift
,
• Provide mentorship and guidance to help other analysts learn and grow
,
• Manage watch schedules to ensure adequate on-site and remote watch floor coverage
,
• Develop reports and deliverables as needed
,
• Escalate night shift issues to SOC Manager, including analyst performance or behavior issues, tool or system degradation or outages, and concerning alerts or incidents
,
• Provide support for complex computer network exploitation and defense techniques
,
• Perform comprehensive computer surveillance/monitoring, identifying vulnerabilities
,
• Develop secure network designs and protection strategies, and conduct audits of information security infrastructure
,
• Provide technical support for forensics services including evidence seizure and computer forensic analysis
,
• Research and maintain proficiency in open and closed-source computer exploitation tools, attack techniques, procedures, and trends
,
• Perform research into emerging threat sources and develop threat profiles
,
• Provide technical support for a comprehensive risk management program identifying mission-critical processes and systems, current and projected threats, and system vulnerabilities.
Requirements
• Minimum of six (6) years of cybersecurity experience with at least three (3) years in a SOC watch floor analyst or IR role
,
• CISSP or CEH certification; additional experience, formal training, certifications, and/or education may be substitutable at the client’s discretion
,
• Experience in SOC tools and technologies such as IDS/IPS, EDR, SIEM, XPS, FireEye, RSA Netwitness, Sourcefire (Snort), Silo, etc.
,
• Strong analytical and organizational skills
,
• Strong verbal and written communication skills
,
• Experience with MS Word and other MS Office applications.
Nice-to-haves
• Bachelor’s Degree or higher in Cybersecurity or related field
,
• Additional Cybersecurity training and/or certifications.
Benefits