Accessibility :
Scripting :  [Disable AJAX and DHMTL]  [Disable javascript alerts]  [Remove all scripting]
Text Size : A A A A
53991722 Principal Analyst, Managed Detection and Response - Morristown, NJ

Job Information

ID :
#35923967
# of Positions :
1
Minimum Education Level :
Bachelor's Degree
Experience Required :
7+ years
Duration :
Full Time Regular
Shift :
Unspecified
Hours per week:
40

Job Description

 

Description

COME BUILD YOUR FUTURE WITH PRESIDIO!

We know technology is the key to success in a connected world. The
innovative solutions we provide our clients can unlock possibilities
that transform their business. While technology permits that connection,
technology without imagination and ingenuity cannot be effective. At
Presidio, we know that it's our people that make the connections
happen.

WHY YOU SHOULD JOIN US? You will set your career on track for
outstanding achievement with a company that knows no limits. Presidio is
a leading IT solutions provider focused on Digital Infrastructure,
Business Analytics, Cloud, Security & Emerging solutions.

THE ROLE:Principal Analyst, Managed Detection and Response

Presidio is seeking aPrincipal Analyst, MDR to join our team in a remote
capacity!The Managed Services Principal Analyst will be the Subject
Matter Expert on investigation theory and procedures, providing guidance
to the vSOC team. The ideal candidate will be well-versed in security
content development, security event analysis through industry
best-practice toolsets, have deep knowledge of current and emerging
threats, and be able to develop risk mitigation strategies required to
protect the confidentiality, integrity and availability of information
systems and data. Candidates should be proficient at working with
internal business units and clients to resolve issues and develop
effective action plans.

Key Responsibilities:

Team Security Analysis Subject Matter Expert (SME)

Serves as the SME and virtual team lead on Security Analysis theory and
procedures

Creates and updates MDR service offering documentation and procedures

Security IoC's

Analysis and Remediation procedures

Security Operations Content specific to offerings

Communicates with internal Analyst Team members on new and updated
Security Analysis content and procedures

Train, mentor and develop Analysts to improve performance and
skillsets

Maintains excellent communication with Management on all tasks and
projects. Responsible for communicating with customers, peers, team and
managers regarding incident and change management.

Client Responsibilities

Maintains relationships with Presidio key clients withing the MDR
Portfolio

Maintains Weekly Threat updates for Presidio clients

Performs threat hunting on client environments

Communicates with clients at a technical level to relay the business
implications of cyber security and develops creative solutions to help
clients solve their security needs

Provide clients with guidance to develop and mature best practice
security programs

Provide clients with guidance to identify and remediate security
deficiencies and gaps with business suitable controls

Continuous Assessment and Improvement of Team Investigation Theory

Contributes significantly to the MDR Threat Framework library through
the creation and maintenance of new security content use cases

Contributes significantly to the MDR Threat Framework library through
the creation of investigation theory documentation based on security
content use cases

Defines, Creates, and Updates comprehensive security documentation

Collaborates with Presidio team members to determine possible efficiency
gains that will including Automation and Standardization of processes

Additional Desired Skills:

Tier III Analyst experience, Network Analytics, Incident Investigations,
and basic Process/Malware Analysis

Ability to conduct multi-source threat analyses examining host behaviors
and network traffic for high priority malicious attacks, anomalous
traffic, or other incidents of interest

Strong comfort level with IPv4, TCP/IP, and RFC data, low level
networking and protocols, TCP/UDP Ports for Apps, and understanding of
what is normal/abnormal endpoint and on-wire activity

Basic awareness of cloud technologies (Amazon, Azure, Google Cloud)

Basic awareness of audit requirements (PCI, HIPAA, SOX, etc.)

Education and Experience:

Bachelor's Degree or the equivalent work experience and/or military
experience

7+ years of technical experience in Information Security, System
Administration, or Network Engineering with at least 3-5 years of
experience in Information Security

Extensive experience in Incident Response, Incident Handling and
Security Operations

Advanced knowledge and expertise of using SIEM, EDR, Vulnerability
Management, Network Traffic Analytics, and industry standard security
technologies for event investigation

Ability to work extremely well under pressure while maintaining a
professional image and approach

\*\*\*\*\*

ABOUT PRESIDIO

Presidio is committed toDiversity, Equity, and Inclusion at the highest
levels and has strengthened its drive to build and drive systemic DE&I
change process across all levels of the organization. Cultivating a
culture of inclusion where the expression of all our differences are
valued, celebrated, and add to our collective achievements.

Presidio is a leading global IT solutions provider assisting clients in
harnessing technology innovation and simplifying IT complexity to
digitally transform their businesses and drive return on IT investment.
Our Digital Infrastructure, Business Analytics, Cloud, Security &
Emerging solutions enable our almost 7,000 middle market, enterprise,
and government clients to take advantage of new digital revenue streams,
omnichannel customer experience models, and the rich data insights
generated by those interactions.

We serve as an extension of our clients' IT teams, providing deep
expertise and letting them focus on their core business. Within
Presidio's 40+ US offices and offices in Ireland, London, Singapore, and
India, we support 2,800+ professionals, including 1,600 technical
engineers. Presidio is a trusted advisor to our clients on a national
level while also bringing our global scale and expertise to bear.

For more information visit:

\*\*\*\*\*

Presidio is an Equal Opportunity / Affirmative Action Employer / VEVRAA
Federal Contractor. All qualified candidates will receive consideration
for this position regardless of race, color, creed, religion, national
origin, age, sex, citizenship, ethnicity, veteran status, marital
status, disability, sexual orientation, gender identification or any
other characteristic protected by applicable federal, state and local
statutes, regulations and ordinances.

To read more about discrimination protections under Federal Law, please
visit:https://www1.eeoc.gov/employers/upload/eeoc\_self\_print\_poster.pdf(Get
Acrobat Reader)

If you have any difficulty using our online system and need an
accommodation in the job application process due to a disability, please
send an email tofor assistance.

Presidio is a VEVRAA Federal Contractor requesting priority referrals of
protected veterans for its openings. State Employment Services, please
provide priority referrals to.

RECRUITMENT AGENCIES PLEASE NOTE:

Agencies/3rd Parties may not solicit to any employee of Presidio. Any
candidate information received from any Agency/3rd Party will be
considered a gift and property of Presidio, unless the Agency/3rd Party
is an Authorized Vendor of Presidio with an up-to-date Presidio Contract
in hand signed by Presidio Talent Acquisition. No payment will be made
to any Agency/3rd Party who is not an Authorized Vendor, nor has
specific approval in writing from Presidio Talent Acquisition to engage
in recruitment efforts for Presidio.

\#LI-PH1

\#CB

Equal Opportunity Employer/Protected Veterans/Individuals with
Disabilities

The contractor will not discharge or in any other manner discriminate
against employees or applicants because they have inquired about,
discussed, or disclosed their own pay or the pay of another employee or
applicant. However, employees who have access to the compensation
information of other employees or applicants as a part of their
essential job functions cannot disclose the pay of other employees or
applicants to individuals who do not otherwise have access to
compensation information, unless the disclosure is (a) in response to a
formal complaint or charge, (b) in furtherance of an investigation,
proceeding, hearing, or action, including an investigation conducted by
the employer, or (c) consistent with the contractor's legal duty to
furnish information. 41 CFR 60-1.35(c)

Presidio, Inc. is an Equal Opportunity/Affirmative Action Employer/
VEVRAA Federal Contractor.  All qualified candidates will receive
consideration for this position regardless of race, color, creed,
religion, national origin, age, sex, citizenship, ethnicity, veteran
status, marital status, disability, or any other characteristic
protected by applicable federal, state and local statutes, regulations
and ordinances. 

Company Information

Name :
Presidio
Description :
Helping clients unlock the unlimited potential of a connected world with our Presidio managed IT services, networked solutions and many strategic partnerships
Type :
Direct Employer
Address :
One Penn Plaza
Suite 2832
New York, NY 10119

Application Information

Online :
Job Posting Entered On :
4/28/2021
Job Posting Expires On :
7/27/2021