Job Description IT Support Analysts - Cyber Security Location: Seneca Falls, NY Duration: 6 months Description: Our work depends on a Cyber Security Analyst joining our team to support our global enterprise sized organization activities. At client, people are our differentiator. As a Cyber Security Analyst supporting our CSOC team, you will be trusted to work on the latest technologies for Vulnerability Management and Reporting, Security Event and Information Management (SIEM), Next Generation Firewall, Enterprise Detection and Response (EDR), Web Application Vulnerability Scanning, and Forensic Imaging. A Cyber Security professional and threat hunting enthusiast, who is seeking opportunities to evolve his/her craft by understanding latest cyber threats and helping an enterprise size organization identify intrusion in its environment. In order to effectively do this, you leverage cutting edge Security Information and Event Management (SIEM) data analytics, as well as network/endpoint detection and response technologies for investigating any malicious activity in on-prem and cloud environments. Responsibilities: The work: - Hunt threats, perform monitoring and security incident triage through the review of SIEM events, network traffic data collection, endpoint activity logs. - Identify and collect data associated with initial security investigation finding. - Detection, monitoring, analysis, escalation of security incidents and Intrusion Detection with documentation and tracking of investigations to resolution, along with creating security alert notifications to steak holders. - Incident handling and response with escalation as needed on any investigations requiring advanced analysis of security incidents. - Analyze network traffic and intrusion alerts; discern false positives - Splunk and Splunk UBA tuning - File/link analysis and immunization against those types of attacks Qualifications: Heres what you need: - Minimum 2 years of Security Analyst experience in an enterprise environment with an ability to defend an enterprise globally - Education: minimum HSD/GED Required Certified Ethical Hacker Certification is REQUIRED - 1 year of Carbon Black experience preferred (antivirus solutions) - Experience with common and uncommon security tools and suites (Kali-Linux, Metasploit, Hydra.) - Disk and memory forensics experience. - Strong analytical and technical capabilities and excels in critical thinking. - In-depth architecture knowledge of Splunk is preferred - Strong MITRE Telecommunication framework knowledge - Network ports and protocols - Vulnerability assessment tools (Nessus, Nmap) - Scripting for automation (Python, PowerShell, APIs) - Strong troubleshooting, reasoning, problem-solving - Endpoint, and network security tools/techniques (i.e. investigating AntiVirus or IDS alerts) - Demonstrated ability to write clear and concise technical documentation - Ability to multi-task, change priorities with short notice, and effective time management skills - High standard of professionalism and ethics As an equal opportunity employer, ICONMA prides itself on creating an employment environment that supports and encourages the abilities of all persons regardless of race, color, gender, age, sexual orientation, citizenship, or disability.