Security Incident Analyst 2
Toronto - Remote
About Behavox
Behavox is shaping the future for how businesses harness their most important raw material - data. Our mission is bold: Organize enterprise data into actionable information that protects and promotes the business growth of multinational companies around the world.
From managing enterprise risk and compliance to maximizing revenue and value, our data operating platform presents a widespread opportunity to build multilingual, AI/ML-based solutions that activate data for every function within a global enterprise.
Our approach is unique, and it’s validated by our customers who tell us to keep forging ahead because no one else is aggregating, analyzing, and acting on data to uncover opportunities or solve problems quite the way we are.
We are looking for fearless innovators who have an insatiable appetite for building what no one has built before.
About the Role
As part of the Behavox Cyber Security team the Security Incident Response Analyst will monitor, detect, analyze, and mitigate cyber security incidents. The role requires a highly talented individual who is willing to demonstrate strong problem-solving skills, has experience in various investigation toolsets and best practices, is able to think critically, and can allow for flexible scheduling. This role will act as an appointed leader of the Incident Response Team (IRT) for the duration of the incident being responded to.
This is a great opportunity for the right talented individual to:
1. Improve and optimization of SIEM security events working on a team dedicated to extraordinary Cyber Security standards.
2. Use modern IR approaches and frameworks (e.g. MITRE ATT&CK and Threat Intelligence).
3. Learn and manage our EDR (Endpoint Detection and Response) platform.
What You'll Bring
-A deep and genuine interest in Behavox as demonstrated by a connection to its mission, marketplace and/or technologies.
-2+ years of working experience in cyber security incident response, managing threat intelligence strategy, monitoring of cloud infrastructure and web application security.
-Experience working with Endpoint Detection and Response (EDR) tools, Intrusion Detection Systems, Firewalls, Vulnerability Assessment tools.
-Experience working with Security Information and Event Management (SEIM) solutions with Security-related designations e.g. GCIH/CCFP preferred.
-Background in hands-on computer and networking experience to include an understanding of TCP/IP, routing, and major Internet protocols.
What You'll Do
- Respond to security incidents using SIEM systems and/or IDS monitoring to contain, eradicate and report on them.
- Design and/or improve on Incident Response capabilities that positively impact risk assessmnet and planning.
- Implement Incident Response capabilities utilizing EDR or other relevant technologies that deliver efficiencies in incident handling.
- Document Incident Response processes through the development of Playbooks and/or Runbooks to provide continuous improvement.
- Write Incident Reports that incorporate recommendations and directives to create iterative feedback loops.
What We Offer
- A truly global mission with a passionate highly talented community in locations all over the World.
- The ability to have significant impact and potential for learning as our aspirations require bold innovation.
- A highly competitive cash compensation package with performance bonuses baked into salary payments .
- A flexible work schedule that allows for Remote or Hybrid work as appropriate to the role and location.
- A very generous time-off policy (30 days annually), with public holidays for your geography in addition.
About Our Process
We take Talent very seriously and we are building a community of extraordinary individuals working together in very high performing teams. We also know that the best Talent always has options so we believe that the process has to be a two way assessment - the company AND the candidate assessing the business needs alignment, the career next step alignment, and the cultural alignment.
During the process we will begin by exploring the core factors regarding salary and location along with core experience and skills and values alignment. We will then deep dive explore the critical technical competencies we have identified for the role, and then we will deep dive in behavioral competencies.
The most aligned candidate will then be asked to do a practical work task simulation activity so we can make sure that you will enjoy the kind of work the role requires, and this task will typically be presented and discussed with a group of colleagues and managers. Finally we will ask you to meet with a number of our senior leaders to make sure that you are making the most informed call possible.
* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰
Tags: Application security Cloud Compliance EDR Firewalls GCIH IDS Incident response Intrusion detection MITRE ATT&CK Monitoring SIEM Strategy TCP/IP Threat intelligence
Perks/benefits: Career development Competitive pay Flex hours Flex vacation Startup environment Team events
More jobs like this
Explore more InfoSec / Cybersecurity career opportunities
Find even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.
- Open Product Security Engineer jobs
- Open Senior Cybersecurity Engineer jobs
- Open Senior Cyber Security Engineer jobs
- Open Information Security Officer jobs
- Open Information Security Specialist jobs
- Open Principal Security Engineer jobs
- Open Senior Penetration Tester jobs
- Open Cloud Security Architect jobs
- Open Chief Information Security Officer jobs
- Open IT Security Engineer jobs
- Open Staff Security Engineer jobs
- Open Cyber Security Specialist jobs
- Open Senior Network Security Engineer jobs
- Open Senior Product Security Engineer jobs
- Open Security Specialist jobs
- Open Cyber Security Architect jobs
- Open Security Operations Analyst jobs
- Open Cybersecurity Consultant jobs
- Open Information System Security Officer jobs
- Open Security Consultant jobs
- Open Information Systems Security Officer jobs
- Open Senior Information Security Analyst jobs
- Open Information Security Architect jobs
- Open Ethical hacker / Pentester H/F jobs
- Open Senior Security Architect jobs
- Open CISA-related jobs
- Open Agile-related jobs
- Open Risk assessment-related jobs
- Open Analytics-related jobs
- Open SOC-related jobs
- Open Network security-related jobs
- Open GCP-related jobs
- Open ISO 27001-related jobs
- Open IAM-related jobs
- Open Application security-related jobs
- Open DoD-related jobs
- Open DevOps-related jobs
- Open Pentesting-related jobs
- Open Threat intelligence-related jobs
- Open APIs-related jobs
- Open Java-related jobs
- Open Vulnerability management-related jobs
- Open Security Clearance-related jobs
- Open Kubernetes-related jobs
- Open SaaS-related jobs
- Open CEH-related jobs
- Open Malware-related jobs
- Open Security assessment-related jobs
- Open SQL-related jobs
- Open PowerShell-related jobs