Sr Cyber Security Detection & Response Analyst

A top financial client is seeking a Cyber Security Detection & Response Sr. Analyst to work a hybrid schedule in Charlotte, NC.

Responsibilities:

The Sr. Analyst will:

• Perform penetration testing against products and systems, including web applications, web services, and mobile devices


• Assist with coordination of vendor pen testing services with internal development teams.


• Collaborate with stakeholders to develop remediation strategies


• Demonstrating practical/working exploitation of security flaws


• Develop and enhance process to automate the delivery of application security metrics.


• Review SAST/DAST output for false positives. Assist development with remediation.


• Serve as an application security subject matter expert.


• Participate in threat modeling exercises.


• Effectively communicate vulnerability details, risks, and potential impacts to, application owners, developers, stakeholders, and partners.


• Act as a mentor for junior team members/interns.


• Design, implement, and support security-focused tools and services.


• Develop tools that improve security testing, reporting, and monitoring.


• Lead investigations into information security incidents.


• Drive efforts towards containment of threats and remediation of environment during or after an incident.


• Perform complex security investigations and root cause analyses.


• Assemble and coordinate with technical teams and third-party vendors to resolve incidents as quickly and efficiently as possible.


• Ensure that all incidents are recorded and tracked to meet audit and legal requirements where necessary.


• Coordinate ingestion of threat intelligence as it pertains to the response process and relevant vectors of attack.


• Coordinate Cyber Hunting exercises and maintain playbook.


• Oversee direction for SOC team and L1 response procedures.


• Build/Review use cases to be incorporated into the response process for real time alerting.

Qualifications:

• 5+ years of experience in manual penetration testing of web and mobile applications


• Competent to work independently at an advanced technical level.


• Understanding of cloud technologies and environments (AWS, Azure, Google).


• Ability to demonstrate a clear understanding, at an enterprise level, of application, network, infrastructure, and data security architecture.


• Excellent analytical skills, able to manage multiple projects under strict timelines, work well in a demanding dynamic environment, and meet overall objectives.


• Ability to work under pressure and manage competing priorities.


• Knowledge of web application frameworks, deployment technologies and security software.


• Scripting capabilities for creating custom scripts to identify/exploit vulnerabilities.


• Strong writing skills to produce detailed reports for consumption by stakeholders at all levels from operations to executive.

Desired Qualifications:

• Proven work experience in manual secure code review.


• Experience working with GitLab Ultimate CI/CD technology, shift-left tools, and application security workflows.


• GPEN, OSCP, CISSP, GWAPT, CEH, or similar certifications.


• Desired scripting experience: One or more of Python, JavaScript, PowerShell, shell script, Ruby, PHP, LUA etc.


• Bachelor's degree in Information Technology or Computer Science, or equivalent experience.


• Inherent passion for information security and service excellence.


• The ability to adapt to new situations and the desire to learn and stay current with AppSec trends, threats, and risks.