Cyber Security Analyst

Please apply for this job here: Click to view/job-openings/?gh_jid=4363717005

ABOUT SOURCEPASS

We are Sourcepass, an IT consulting company (MSP) that has been providing network support and solutions for our clients since 2001. We create and deliver innovative IT services, cloud computing, and security solutions that match the right technologies to specific industries and business strategies. We strive to provide top quality IT services to our clients so they can focus on the productivity and profitability of their business. 

We have been named by Channel Futures as one of the world’s 501 most strategic and innovative MSP’s for the past 6 years and awarded Top Workplaces in 2020 and 2021 by Newsday! Pretty cool right? We like to think so!

WHY JOIN US?

At Sourcepass we are focused on growing our team members and giving the proper tools for success. We support and highly encourage professional development. We seek to be a cultivating environment for new ideas and suggestions with an opportunity to collaborate with world class team members. 

We have an exciting opportunity to join our amazing team of 500+ staff as a Cyber Security Analyst.

Feel free to check out our website at Click to view to learn more about us!

POSITION SUMMARY

The Cyber Security Analyst is a front-facing role, working directly with incoming alerts, reports, and metrics to monitor and maintain the security of Sourcepass’ clients. The Analyst performs triage to filter out non-actionable information so that clients can continue to focus on running their businesses. The Analyst performs minor response to non-serious, non-complex events and escalates anything else to senior security team staff. This position reports to the SOC Team Lead.

RESPONSIBILITIES

Monitor incoming alerts, reports, and metrics from a variety of a systems to perform triage
Perform minor response to non-serious, non-complex events (malware, data leakage, account misuse, etc.)
Perform automated or manual patching of discovered vulnerabilities or misconfigurations.
Escalate more serious or complex events to senior security team staff
Clearly explain event sources and resolutions to clients
Clearly document steps taken
Follow documented procedures to drive resolution
Make recommendations for improvements to processes and tools 

DESIRED SKILLSET/EXPERIENCE

Willingness to learn and improve both core function skills and potential additional security role skills
Both strong written and strong verbal communication skills, both internally and client-facing
Basic understanding of SOC practices and processes
Strong understanding of incident response practices and processes
Strong understanding of the Windows operating system (Linux and Macintosh a plus)
Strong understanding of the Windows ecosystem (Active Directory, Azure, Microsoft365) 
Experience with ticketing and tracking systems
Basic knowledge of networking protocols and topologies, as well as network analysis. 
Basic understanding of malware analysis
Analytical, problem solving, critical thinking skills
Basic understanding of OS and network auditing 
Knowledge of scripting languages (PowerShell, batch, etc.) a plus
Security+, E|CIH, & GCIH certifications (or equivalents) all preferred