Match score not available

Security Analyst III

Remote: 
Hybrid
Contract: 
Salary: 
93 - 110K yearly
Experience: 
Mid-level (2-5 years)
Work from: 
Tampa (US)

Offer summary

Qualifications:

Strong understanding of cybersecurity principles, Extensive expertise with Splunk and SPL, Advanced knowledge of EDR and cloud platforms, Certifications such as GCIH, GCIA preferred, Ability to perform thorough incident investigations.

Key responsabilities:

  • Act as final point for alert triage
  • Investigate suspicious events using SIEM/ SOAR
  • Interface directly with customers providing detailed analysis
  • Provide training support to Analyst I and II
  • Produce high-quality communications and recommendations
Deepwatch logo
Deepwatch Computer Hardware & Networking Scaleup https://www.deepwatch.com/
201 - 500 Employees
See more Deepwatch offers

Job description

Come join Deepwatch’s team of world-class cybersecurity professionals and the brightest minds in the industry. If you're ready to challenge yourself with work that matters, then this is the place for you. We're redefining cybersecurity as one of the fastest growing companies in the U.S. – and we have a blast doing it!

Who We Are

Deepwatch is the leader in managed security services, protecting organizations from ever-increasing cyber threats 24/7/365. Powered by Deepwatch’s cloud-based security operations platform, Deepwatch provides the industry’s fastest, most comprehensive detection and automated response to cyber threats together with tailored guidance from dedicated experts to mitigate risk and measurably improve security posture. Hundreds of organizations, from Fortune 100 to mid-sized enterprises, trust Deepwatch to protect their business. 

Our core values drive everything we do at Deepwatch, including our approach to tackling tough cyber challenges. We seek out tenacious individuals who are passionate about solving complex problems and protecting our customers. At Deepwatch, every decision, process, and hire is made with a focus on improving our cybersecurity solutions and delivering an exceptional experience for our customers. By embracing our values, we create a culture of excellence that is dedicated to empowering our team members to explore their potential, expand their skill sets, and achieve their career aspirations, which is supported by our unique annual professional development benefit.

Deepwatch recognition includes:

  • 2023, 2022 and 2021 Great Place to Work® Certified
  • 2023 and 2022 Forbes America’s Best Startup Employers
  • 2023 and 2022 Fortress Cybersecurity Award
  • 2023 $180M Series C investment from Springcoast Capital Partners, Splunk Ventures, and Vista Credit Partners of Vista Equity Partners
  • 2022 Cigna Healthy Workforce Silver Designation
  • 2022 Cybersecurity Excellence Award for MDR

Security Analyst III

Location: Tampa, FL (onsite)

Shift: 9am-5pm est Monday-Friday

 

Deepwatch is looking for a highly motivated, self-driven, technical analyst dedicated to making a difference in global security by protecting organizations against the most advanced attackers in the world. The Deepwatch Security Operations Center offers opportunities to expand your skill set through a wide variety of experiences, detecting and responding to incidents as they occur in real-time for our customers. You’ll be an integral part of supporting our customers by understanding their bespoke environment, needs and challenges. You will be playing a key role in supporting some of the top organizations in the world, and have the opportunity to develop your skills by working with the best responders in the industry.

In this role, you’ll get to:

  • Act as the final point of escalation for alert triage processes across multiple platforms and security technologies including Windows, Linux and macOS
  • Provide in depth analysis from escalated requests originating from any team member who needs support
  • Validate suspicious events by performing investigations using SIEM and SOAR technologies, leveraging Deepwatch proprietary tooling, intelligence and OSINT, TTPs and IOCs
  • Interface directly with customers when necessary, providing a high level of confidence and thoroughness during the investigative process
  • Act as a key resource for Management, providing opportunities for improvement and actionable recommendations on creating efficiencies
  • Act as an additional resource for the Threat Response team when a compromise is discovered or when a customer declares an Incident
  • Identify gaps in customer environments, data ingested or configuration errors which reduce telemetry quality
  • Work with customer and leadership to surface and resolve concerns
  • Provide support to all analysts, work collaboratively to  coach and train others on a regular basis, and act as the technical escalation point for Analyst I & II
  • Produce high-quality written and verbal communications, recommendations, and findings to customer management in a timely manner
  • Lead the conversation for improvements in the squad and for the customer and be a change agent for measurably improving our customer security posture and experience
  • Continue to sharpen your skills and capabilities on the job, and through the Deepwatch development program

 

 

To be successful in this role, you’ll need:

  • A strong understanding of cyber security principles, concepts and practices which includes the ability to perform a complete and thorough incident investigation and triage as the final point of escalation
  • Extensive expertise with Splunk and SPL including the ability to navigate the console with ease and perform queries that result in efficient investigation and accurate alert analysis
  • Confidence to autonomously resolve the most complex investigations as the final point of escalation
  • Build accurate forensic timelines and identify anomalies matching TTPs/IOCs
  • Manage customer expectations in meetings which includes follow through and tracking action items to completion while keeping your leadership and peers informed
  • Communicate when help is needed and  leverage internal resources to quickly resolve investigations and incidents
  • Have advanced knowledge of Adversary Tactics, Techniques, & Procedures (TTP), Event Logging, and Event Triage 
  • Demonstrate the ability to pivot to other log sources, cloud systems or consoles to perform a comprehensive analysis from multiple data sources. 
  • Have a strong understanding of modern EDR, email security and cloud identity platforms
  • A desire to support others and uplift the program and team through updating training materials and SOPs
  • Demonstrate the ability to write well-written reports and analysis that’s thorough, accurate and complete
  • Provide the customer with a complete understanding of the investigation and act as a trusted advisor
  • GCIH, GCIA, GDAT, GMON, GREM, OCSP, OCSE, or equivalent certification preferred

 

ITAR Compliance

This position will have access to customer data and as such is subject to International Traffic in Arms Regulations (ITAR). Upon application, candidates will be asked to confirm that they are a U.S. Person as defined by the following:

 

  • A citizen of the U.S.;
  • A lawful permanent resident of the United States; 
  • A person admitted to the United States as a refugee; or
  • A person that has been granted asylum by the United States government.

 

The intent of this requirement is not to verify employment eligibility overall, but to ensure compliance with import/export regulations. If you do not meet these requirements, we encourage you to apply for other open roles at Deepwatch. This information will be verified upon offer of employment.

The anticipated salary range for this role is $93,000 to $110,000 + stock options + benefits. Actual compensation may vary from posted hiring range based upon geographic location, work experience, education, and/or skill level.

 

 

What We Offer:

Deepwatch is excited to provide benefits designed to support team members and their families. Including:

  • Medical, dental, vision, and disability insurance
  • Flexible Time Off (FTO), 9 company holidays, sick leave and 8-Weeks Paid Parental Leave
  • Unique professional development benefits, starting at $3,000 annually
  • Wellness contests and monthly educational programs
  • 401(K) retirement program with employer match
  • Learn more here: Deepwatch Benefits

We know the confidence gap and imposter syndrome can get in the way of meeting spectacular candidates, so please don’t hesitate to apply — we’d love to hear from you.  Please review our DEI Statement here.

Deepwatch welcomes and encourages applications from people with disabilities and accommodations are available on request for candidates taking part in all aspects of the selection process. Please inform your recruiter or contact recruiting@deepwatch.com for further information.

All Deepwatch employees are expected to:

  • Be interested in and able to work remotely from a home office when not at a corporate office
  • Pass a pre-employment background and drug screen in accordance with applicable laws

Deepwatch is an equal opportunity employer and all qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, age, disability status, marital status, sexual orientation, gender identity, genetic information, protected veteran status, or any other characteristic protected by law.  In compliance with federal law, all persons hired will be required to verify identity and eligibility to work in the United States and to complete the required employment eligibility verification document form upon hire.

By submitting your application, you agree that Deepwatch may collect your personal data for recruiting, global organization planning, and related purposes. The Deepwatch Privacy Policy explains what personal information we may process, where we may process your personal information, our purposes for processing your personal information, and the rights you can exercise over Deepwatch’s use of your personal information. 

Required profile

Experience

Level of experience: Mid-level (2-5 years)
Industry :
Computer Hardware & Networking
Spoken language(s):
English
Check out the description to know which languages are mandatory.

Other Skills

  • Problem Solving
  • Incident Reporting
  • Customer Service
  • Analytical Thinking
  • Verbal Communication Skills
  • Procedure Development

Security Analyst Related jobs