#GetThereFirst
Digital Hands is an innovative Managed Security Service Provider (MSSP) with a mission to protect customer data and make technology available, productive and secure with the strongest talent in the cyber industry. Members of the Digital Hands Team work with leading technologies and protect a dynamic set of enterprise-class customers including best-known brands in the hospitality, financial, manufacturing and communications industries. Digital Hands employees enjoy competitive compensation and benefits, training opportunities, personal skills development, and opportunities for professional advancement across the organization.
Digital Hands is comprised of innovators leading from the front, fueled by a desire to achieve, test new boundaries, and a determination to do whatever it takes to get there first every time. Ideal candidates believe in the mission and vision of the company and have a genuine love for what they do. At Digital Hands, we take ownership, obsess over our promises, anticipate our customers' needs. and get ahead of every threat so that our customers can focus on their business with the peace of mind that only comes from knowing their cyberworld is secure.
- This is a remote/onsite hybrid role in Tampa, Florida.
POSITION SUMMARY:
Working within Digital Hands' Security Operations Center (SOC), the IT Associate Analyst tunes production alerts, acts as an escalation path for the first responders, and works on documentation and process improvement. The IT Associate Analyst monitors and responds to advanced threats within Customer environments, including alerts from: SIEMs, Firewalls, Vulnerability Scanners, IDS/IPS (host and network based), Application Control systems, and Anti-Virus software.
DUTIES AND RESPONSIBILITIES:
- Respond to antivirus detections by performing scans, attempting remediation, and escalation as required.
- Multitask and prioritize work based on associated risk.
- Characterize and analyze network traffic to identify anomalous activity and potential threats to network resources.
- Coordinate with enterprise-wide cyber defense staff to correlate threat assessment data and validate network alerts.
- Create auditable evidence of security measures.
- Document and escalate incidents (including event history, status and potential impact for further action) that may cause ongoing and immediate impact to the environment.
- Implement IP blocks in customer firewalls to reduce attack surface.
- Examine network topologies to understand data flows through the network.
- Identify network mapping and operating system (OS) fingerprinting activities.
- Perform event correlation using information gathered from a variety of sources within the enterprise to gain situational awareness and determine the effectiveness of an observed attack.
- Provide timely detection, identification, and alerting of possible attacks/intrusions, anomalous activities, and misuse activities and distinguish these incidents and events from benign activities.
- Receive and analyze network alerts from various sources within the enterprise and determine possible causes of such alerts.
- Perform cyber defense trend analysis and reporting, including preparation of audit reports that identify technical and procedural findings, and provide recommended remediation strategies/solutions.
- Use cyber defense tools for continual monitoring and analysis of system activity to identify malicious activity.
- Able to perform other duties as assigned.
EDUCATION AND WORK EXPERIENCE: - Bachelor's Degree and/or 3-5 years of experience in a SOC.
- Professional certifications such as CompTIA Security+, Network+, Linux+, or SANS GIAC GSEC, GCIH, and/or equivalent professional experience or education preferred.
- Strong knowledge of and hands-on experience with:
- The OSI model.
- Security tools and programming languages including:
- Wireshark/tcpdump.
- Security Management Systems (SMS).
- Regular Expressions/Powershell.
- Experience with network investigations reviewing endpoint logs, network traffic logs, and security solutions.
- Operating systems knowledge and systems administration skills for various versions of UNIX, LINUX, and Windows and ability to read and understand Windows logs.
- Strong knowledge of the various security solutions such as AV, IPS, IDS, SIEM, firewalls and proxies.
- Comprehensive understanding of Incident Response Handling procedures, and break the chain exercises.
- Information Security and Compliance industry standards and best practices.
KNOWLEDGE, SKILLS AND CHARACTERISTICS REQUIRED:
- A keen interest in security and the need for the confidentiality, integrity and availability of information and information systems to be maintained.
- Excellent analytical skills.
- Excellent communication, presentation and listening skills.
- Excellent organizational and time-management skills. and the ability to multi-task and prioritize.
- High level of integrity, judgment and situational awareness.
- Ability to work both independently and collaboratively with peers, across teams, and with management.
- Flexibility and adaptability to change.
- Capability of learning and performing all the activities that everyone on the shift does.
- Excellent customer service skills.
Digital Hands is dedicated to a diverse and inclusive workplace and culture, and proud to be an Equal Employment Opportunity employer. All qualified applicants will receive consideration for employment without regard to race, religion, color, national origin, sex (including pregnancy, childbirth, reproductive health decisions, or related medical conditions), sexual orientation, gender identity, gender expression, age, status as a protected veteran, status as an individual with a disability, genetic information, political views or activity, or other applicable legally protected characteristics.
Digital Hands is committed to providing reasonable accommodations for qualified individuals with disabilities and disabled veterans in our job application procedures. If you need assistance or an accommodation due to a disability, please contact us at
talentmanagement@digitalhands.com.
Digital Hands participates in the U.S. Government's E-Verify program to determine employment eligibility. In compliance with the federal government, all hired applicants will be required to verify identity and employment eligibility upon hire. To learn more about E-Verify, please visit
dhs.gov/e-verify.
By submitting your application, you agree that Digital Hands may collect, use, and process your information, which may include personal information and sensitive personal information, in connection with Digital Hands' recruitment activities. You may delete your application and/or unsubscribe from receiving notifications of career opportunities at Digital Hands at any time. For additional details on how Digital Hands uses and protects your personal information in the application process, including your rights under the California Privacy Rights Act ("CPRA"), click here to view our Privacy Notice.