Cyber Security Analyst

Please apply for this job here:
Click to view/job-openings/?gh_jid=4435116005

We are Sourcepass, an IT consulting company (MSP) with a rich history of providing network support and innovative solutions since 2001. Our expertise spans IT services, cloud computing, and security, that tailor the right technologies to specific industries and business strategies. Sourcepass aims to be different. It is owned and operated by technology, security, and managed services experts who are passionate about delivering an IT experience that clients love.
Sourcepass has acquired and continues to acquire companies across all avenues of technology bringing more than 40 years of expertise to all of our service areas.

Today, Sourcepass comprises over six hundred employees serving more than two thousand clients across twenty unique vertical markets. And the best is yet to be.

Our achievements speak for themselves: named to the Inc. 2022 Best in Business list, honored with two 2023 Stevie® Awards, listed on CRN’s 2023 Solution Provider 500, and recognized in Gartner’s 2024 Magic Quadrant™. Most recently, we were awared PAX8’s 2024 Partner of the Year and designated as Microsoft CoPilot MVP. We take pride in these accolades and continue to push boundaries in the IT consulting industry. Join us and be part of our journey toward even greater accomplishments.

POSITION SUMMARY

The Cyber Security Analyst is a front-facing role, working directly with incoming alerts, reports, and metrics to monitor and maintain the security of Sourcepass’ clients. The Analyst performs triage to filter out non-actionable information so that clients can continue to focus on running their businesses. The Analyst performs minor response to non-serious, non-complex events and escalates anything else to senior security team staff. This position reports to the SOC Team Lead.

RESPONSIBILITIES

Monitor incoming alerts, reports, and metrics from a variety of a systems to perform triage
Perform minor response to non-serious, non-complex events (malware, data leakage, account misuse, etc.)
Perform automated or manual patching of discovered vulnerabilities or misconfigurations.
Escalate more serious or complex events to senior security team staff
Clearly explain event sources and resolutions to clients
Clearly document steps taken
Follow documented procedures to drive resolution
Make recommendations for improvements to processes and tools 

DESIRED SKILLSET/EXPERIENCE

Willingness to learn and improve both core function skills and potential additional security role skills
Both strong written and strong verbal communication skills, both internally and client-facing
Basic understanding of SOC practices and processes
Strong understanding of incident response practices and processes
Strong understanding of the Windows operating system (Linux and Macintosh a plus)
Strong understanding of the Windows ecosystem (Active Directory, Azure, Microsoft365) 
Experience with ticketing and tracking systems
Basic knowledge of networking protocols and topologies, as well as network analysis. 
Basic understanding of malware analysis
Analytical, problem solving, critical thinking skills
Basic understanding of OS and network auditing 
Knowledge of scripting languages (PowerShell, batch, etc.) a plus
Security+, E|CIH, & GCIH certifications (or equivalents) all preferred