Managed Network Detection and Response (MNDR) Analyst
Bengaluru, India
Applications have closed
Arista Networks
Arista Networks was founded to pioneer and deliver software-driven cloud networking solutions for large data center storage and computing environments. Arista’s award-winning platforms, ranging in Ethernet speeds from 10 to 100 gigabits per...Company Description
Arista Networks is an industry leader in data-driven, client to cloud networking for large data centre, campus and routing environments. Arista’s award-winning platforms deliver availability, agility, automation, analytics and security through CloudVision® and Arista EOS®, an advanced network operating system.
Job Description
Awake’s mission is to protect companies from advanced cyber-attacks and to help their security teams operate with super-human efficiency. Our approach is simply different than what is available today, and we aim to create a world-class, diverse and enduring capability to help protect the information assets that enrich our world.
Our team is composed of customer focused professionals with best in class industry experience. Our team of extremely talented and friendly individuals is looking for new members who are passionate, motivated, and most of all enjoy working closely with customers to ensure their success.
Full Time US shift
Responsibilities
Support Awake Labs Managed Network Detection and Response (MNDR) solution
Conduct threat hunting and investigations using Awake’s network traffic analysis platform
Investigate, document, and report on information security issues and emerging trends
Coordinate with other internal Awake Labs analysts or internal departments on activities impacting a diverse customer base
Conduct network log and network PCAP analysis, malware triage; and other investigation related activities in support of Incident Response investigations
Assist Awake's clients by advising on and helping to implement incident remediation plans
Develop code scripts and tools to automate the analysis of forensic artifacts and other MNDR solutions
Evolve existing Awake Labs methodologies to enhance and improve our DFIR practice
Assist with client onboarding and monthly reporting calls.
Provide training, present to small groups, write blogs, and speak at conferences such as Blackhat and BSides
Write executive and technical reports for client engagements
Requirements
3 or more years of Managed SOC experience using network traffic or monitoring technology
2 or more years of Managed SOC experience on either network or Endpoint Detection and Response (EDR) technology
Have the personality of someone who likes to dive into a PCAP, look at the raw hex, and also jump into the protocol RFC/specification document(s) to better understand it
Ability to parse and read PCAP data using Wireshark or other tools as well as being able to read text-based network logs to identify malicious activity
Ability to read blogs, conduct research, and convert threat intelligence into detection models
Understanding of a wide range of network protocols and how they function at their lowest levels
Proficient with network-based hunting and analysis
Ability to code scripts in Python, Go, and/or Powershell
Familiar with Splunk, ELK, and or other SIEM tools
network traffic with endpoint artifacts with customer environments
Ability to prioritize and complete multiple tasks with little to no supervision
Ability to work independently or as part of a collaborative team effort
Other Desired Benefits
Experience with Awake’s network traffic analysis platform
Excellent customer-facing skills
Ability to perform tabletop incident response exercises
Strong understanding of network security concepts
Cloud (AWS, Azure, GCP, and O365) DFIR experience
Advanced Python, Go, C#/.NET and/or Powershell
Familiar with interacting and/or writing APIs
CREST Certified in incident response
Tags: Analytics APIs Automation AWS Azure C Cloud CREST DFIR EDR ELK Forensics GCP Incident response Malware Monitoring Network security PCAP PowerShell Python SIEM SOC Splunk Threat intelligence
Perks/benefits: Conferences
More jobs like this
Explore more InfoSec / Cybersecurity career opportunities
Find even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.
- Open Ethical hacker / Pentester H/F jobs
- Open Information Security Specialist jobs
- Open Manager Pentest H/F jobs
- Open Cyber Security Architect jobs
- Open Senior Cyber Security Engineer jobs
- Open Cyber Security Specialist jobs
- Open Product Security Engineer jobs
- Open Principal Security Engineer jobs
- Open Information Systems Security Officer (ISSO) jobs
- Open Staff Security Engineer jobs
- Open Senior Information Security Analyst jobs
- Open Cybersecurity Analyst jobs
- Open Consultant infrastructure sécurité H/F jobs
- Open Chief Information Security Officer jobs
- Open IT Security Analyst jobs
- Open Consultant SOC / CERT H/F jobs
- Open Cybersecurity Consultant jobs
- Open Security Specialist jobs
- Open Senior Information Security Engineer jobs
- Open Cybersecurity Specialist jobs
- Open Senior Security Architect jobs
- Open Senior Penetration Tester jobs
- Open Security Researcher jobs
- Open Sr. Security Engineer jobs
- Open Security Operations Analyst jobs
- Open Clearance-related jobs
- Open ISO 27001-related jobs
- Open Windows-related jobs
- Open Application security-related jobs
- Open Network security-related jobs
- Open Agile-related jobs
- Open Pentesting-related jobs
- Open Vulnerability management-related jobs
- Open GCP-related jobs
- Open Analytics-related jobs
- Open SaaS-related jobs
- Open CISA-related jobs
- Open IAM-related jobs
- Open Threat intelligence-related jobs
- Open APIs-related jobs
- Open Security assessment-related jobs
- Open Java-related jobs
- Open IDS-related jobs
- Open DevOps-related jobs
- Open Security Clearance-related jobs
- Open Malware-related jobs
- Open EDR-related jobs
- Open Kubernetes-related jobs
- Open CEH-related jobs
- Open IPS-related jobs