Lead Security Analyst

DirectDefense has an immediate opening on our Security Operations team. This is an elite team of Security Analysts who do not merely monitor for attacks and malware, they actively and aggressively hunt for the evidence of compromise within our client's environments around the clock and provide actionable remediation guidance. As a LeadSecurity Analyst, you will be part of a revolution in managed security. You will work with brilliant people to spot, track, and eradicate hackers and malware. You will also be on the ground floor of building a next-generation Security Operations Center.

Responsibilities:

• Perform in-depth analysis of user behavior, logs, and alerts using a variety of technologies including NGAV, EDR, Firewall, IDS/IPS, Web Proxy, and other security tools.
• Develop and refine methods to detect abnormal or malicious activities, integrating findings into actionable threat detection strategies.
• Monitor Security Information and Event Management (SIEM) systems and investigate alarms, triaging incidents to provide swift and effective responses.
• Handle client support requests related to security incidents, ensuring comprehensive investigations and timely resolutions.
• Participate in the documentation of Incident Response (IR) activities, maintaining accurate records of investigations, actions taken, and outcomes.
• Prepare detailed reports on security threats, metrics, and defense effectiveness tailored to various client audiences.
• Collaborate on the development and fine-tuning of new SIEM detection capabilities, enhancing the overall effectiveness of our security monitoring processes.
• Provide input for the configuration and optimization of SIEM rules, filters, and alerts.
• Provide clear and concise communications to clients regarding threat analysis, incident responses, and security recommendations.
• Deliver presentations and reports to client stakeholders, understandably articulating complex security concepts.
• Stay current with the latest trends and developments in cybersecurity, integrating new knowledge into daily practices.

Qualifications:

• 5+ years of relevant experience in Cybersecurity, risk management, security operations, network operations, or equivalent knowledge.
• Basic knowledge of attacker behavior, motivations, and defense architectures.
• Experience working with anti-malware, endpoint telemetry, or EDR products such as CrowdStrike Falcon Insight.
• Proficiency with other enterprise security technologies such as SIEM, next-gen firewalls, and vulnerability scanning tools.
• Basic familiarity with the inner workings of Windows, Linux, and macOS and their command lines.
• Experience developing technical documentation such as security reports or investigation findings.
• Experience working with programming languages such as Python or Go.

Application Instructions: To apply, please submit your resume and cover letter through our online application portal. Applications will be reviewed on a rolling basis until the position is filled.

Salary range: $160,000

Bonus: Up to 10% annual bonus

Benefits include:

• 401(k)
• AD&D Insurance
• Dental Insurance
• Disability insurance
• Health insurance
• Life insurance
• Vision insurance
• Flex PTO program
• Paid certification and continuing education

Work schedule: Monday through Friday

Work hours: 40 hours a week

A little about DirectDefense

Since coming together in 2011 to form DirectDefense, our team has been committed to offering Cybersecurity defense strategies that are unmatched in the industry. Whether we are performing assessments of networks, platforms, and applications or applying managed services to improve your organization’s security posture, we are focused on providing world-class services that don’t just work–they work for you.

OUR MISSION

We establish partnerships with our clients based on trust and results. We leverage our deep industry knowledge and expertise to identify and remediate blind spots in your security program, provide meaningful visibility of your entire enterprise, and align your organization with security best practices and compliance standards.

OUR VISION

We aim to secure organizations across all industries against advanced threats and attacks in today’s world. Acting in partnership with organizations, we will provide unmatched information security services designed to improve your overall security posture, close gaps, and track vulnerabilities continuously through continued education and support.

EEO COMMITMENT

We’re an equal employment opportunity/affirmative action employer that empowers our people to drive change fearlessly – no matter their race, color, ethnicity, religion, sex (including pregnancy, childbirth, lactation, or related medical conditions), national origin, ancestry, age, marital status, sexual orientation, gender identity and expression, disability, veteran status, military or uniformed service member status, genetic information, or any other status protected by applicable federal, state, local, or international law.

As Colorado law requires under the Equal Pay for Equal Work Act, DirectDefense provides a reasonable range of compensation for roles that may be hired in Colorado. Actual compensation is influenced by a wide array of factors including but not limited to skill set, level of experience, and specific office location. For the state of Colorado only, the range of starting pay for this role is $160,000 - $170,000 per year with a bonus package.