Senior Threat Analyst

About the role

We are looking for a Senior Threat Analyst (remote) to be a key contributor in expanding Coalition’s MDR security program. This role will serve as a full-spectrum security analyst with a strong focus on detection and response within platforms like SentinelOne CrowdStrike Falcon and Microsoft Defender. Securing Coalition’s MDR efforts is essential to protecting our policyholders and achieving Coalition’s goals of solving cybersecurity risk.

The MDR team leads the company-wide efforts to improve Coalition’s security posture in close collaboration with Product Engineering and IT Security teams. You will be a key contributor to our roadmap while building up capabilities for innovative and scalable detection/response solutions. We’re targeted by the most capable adversaries and MDR will have excellent visibility and support from the entire company.

You will use modern cloud technology stacks and influence major security technology decisions. This role will report to the Head of MDR within Coalition Incident Response and will partner with the IT and Security Engineering teams.

Responsibilities

• Client-facing experience such as any customer service-driven role.

• Experience with network traffic and protocol analysis using tools like Wireshark.

• Excellent time management writing and communication skills.Lead end-to-end event investigations from MDR alert to client reporting with Coalition’s customers.

• Identify and investigate incidents to understand the cause and extent of a breach by leveraging technical tooling and threat intelligence sources.

• Conduct forensics log and malware analysis across a client’s environment in support of investigations.

• Leverage findings from investigations to develop and articulate expert-level opinions to technical and executive audiences.

• Develop comprehensive written reports and oral presentations for both technical and executive stakeholders.

• Communicate and collaborate effectively with customers including legal counsel and technical and executive stakeholders.

Skills and Qualifications

• 5+ years of experience in the MDR/security monitoring space with expertise in tools such as Microsoft Defender SentinelOne and CrowdStrike Falcon.

• Deep technical knowledge of techniques to contain active incidents collect event data analyze IOCs/IOAs and create evidentiary reports for stakeholders.

• Strong understanding of cybersecurity operations security monitoring EDR and SIEM tooling (e.g. Microsoft Sentinel Splunk).

• Expertise in conducting forensic investigations and log/malware analysis in cloud and on-premises environments.Deep technical knowledge of techniques to contain active incidents collect event data analyze IOCs/IOAs and create evidentiary reports for stakeholders.Strong understanding of cybersecurity operations security monitoring EDR and SIEM tooling (e.g. Microsoft Sentinel Splunk).

• Certified Information Systems Security Professional (CISSP)

• GIAC Certified Incident Handler (GCIH) or GIAC Certified Forensic Analyst (GCFA)

• Certified Ethical Hacker (CEH) or OSCP (Offensive Security Certified Professional)

• Advanced knowledge of enterprise security controls authentication/identity management and network security architectures.

Bonus Points

• Client-facing experience such as any customer service-driven role.

• Experience with network traffic and protocol analysis using tools like Wireshark.

• Excellent time management writing and communication skills.

Compensation

Our compensation reflects the cost of labor across several US geographic markets. The US base salary for this position ranges from $98000/year in our lowest geographic market up to $152000/year in our highest geographic market. Consistent with applicable laws an employee's pay within this range is based on a number of factors which include but are not limited to relevant education skills job-related knowledge qualifications work experience credentials and/or geographic location. Your recruiter can share more on target salary for your location during the interview process. Coalition Inc. reserves the right to modify this range as needed.

Perks

• 100% medical dental and vision coverage

• Flexible PTO policy

• Annual home office stipend and WeWork access

• Mental & physical health wellness programs (One Medical Headspace Wellhub and more)!

• Competitive compensation and opportunity for advancement