About Us:

Marksmen-Research is a cutting-edge cybersecurity firm committed to defending against modern cyber threats and safeguarding our clients’ critical assets. As a Level 1 Cyber Security Analyst, you’ll be on the front lines of our Security Operations Center (SOC), monitoring and responding to real-time security alerts and enhancing our clients' defenses.

Job Summary:The Level 1 Cyber Security Analyst plays a crucial role in the Security Operations team, responsible for monitoring, detecting, and responding to security incidents. This entry-level role is perfect for those passionate about cybersecurity and looking to gain hands-on experience in an active SOC environment.

Key Responsibilities:

1. Monitoring and DetectionActively monitor security alerts from various security monitoring systems, including SIEM (Security Information and Event Management) platforms. Track and analyze network activity, system logs, and security alerts to identify potential security incidents. Respond to low-level and intermediate security alerts based on established procedures and protocols.

2. Incident ResponseConduct initial analysis of alerts to verify the validity of potential security incidents. Escalate high-priority or complex security incidents to Level 2 and Level 3 analysts. Assist in containing, mitigating, and resolving security incidents under supervision.

3. Threat Intelligence and AnalysisPerform preliminary investigations using open-source intelligence (OSINT) tools and threat intelligence feeds. Assist in gathering and analyzing threat intelligence to understand emerging threats and vulnerabilities.

4. Documentation and ReportingDocument incidents, investigations, and remediation actions in the SOC case management system. Generate incident reports and provide detailed documentation of actions taken during the incident lifecycle. Maintain accurate and organized records of all monitored activities, incidents, and escalations.

5. Continuous ImprovementParticipate in training and upskilling activities to stay updated on the latest cyber threats, tools, and SOC processes. Provide feedback on incident response and monitoring procedures to improve SOC performance. Contribute to the development of playbooks, workflows, and procedures for common security scenarios.

6. Communication and CollaborationCollaborate with team members across different shifts to ensure continuous monitoring and seamless incident handover. Communicate effectively with stakeholders and other security analysts regarding incident updates and resolutions.

Qualifications:

• Education: An Undergraduate with a strong passion and knowledge or Bachelor’s degree in Computer Science, Information Security, or a related field. Equivalent work experience or certifications may be considered.
• Experience: 0-2 years in a SOC or cybersecurity role is preferred but not required.
• Certifications: Certifications such as CompTIA Security+, CySA+, or equivalent are a plus.

Key Skills:

• Technical Skills:Basic understanding of networking fundamentals (TCP/IP, DNS, routing, etc.) and cybersecurity concepts. Familiarity with security monitoring tools, SIEM systems (e.g., Splunk, QRadar), IDS/IPS, firewalls, and antivirus solutions. Proficiency in Linux/Unix and Windows operating systems. Foundational knowledge of malware analysis and threat hunting is an advantage.

• Analytical Skills:Strong analytical skills and attention to detail for investigating security alerts and identifying false positives. Ability to quickly learn new tools and techniques in a fast-paced environment.

• Soft Skills:Effective communication skills to report findings clearly to technical and non-technical stakeholders. Ability to work well both independently and in a team. Strong problem-solving skills and a proactive approach to identifying potential threats.

Work Environment:

• Availability for shift work in a 24/7 SOC environment, including nights, weekends, and holidays, as needed.
• Adaptable to a fast-paced, high-pressure work environment with a proactive attitude toward security.

What We Offer:

• Career Growth: Hands-on training, opportunities for certifications, and exposure to advanced cybersecurity practices.
• Collaborative Environment: Join a passionate and supportive team dedicated to continuous learning and growth.