Job Search Results for threat intelligence analyst

We are seeking a Security Operations Center (SOC) Analyst with hands-on experience in Secureworks Taegis and Microsoft Defender (Endpoint, Identity, and Cloud) to join our cybersecurity team. This... More role is critical for monitoring, analyzing, and responding to security threats across cloud and hybrid environments. The ideal candidate will thrive in high-pressure situations, collaborate across teams, and leverage SIEM/SOAR capabilities to enhance threat detection and response.Key ResponsibilitiesMonitor and triage security alerts using Secureworks Taegis and Microsoft Defender, including detection rule authoring and alert enrichment.Investigate incidents across cloud, network, and endpoint environments using Secureworks case management and Defender telemetry.Develop and maintain log ingestion pipelines using tools like Cribl or Logstash for Secureworks integration.Collaborate with Tier-2/3 analysts and threat intelligence teams to refine detection rules and reduce false positives.Participate in incident response activities, including containment, eradication, and recovery.Create and maintain SOC playbooks and automation workflows using Secureworks SOAR and Microsoft security automation capabilities.Conduct packet analysis, malware triage, and forensic investigations as needed.Stay current on threat landscapes, compliance standards (e.g., MITRE ATT&CK, GDPR, PCI-DSS), and emerging security technologies.This position will pay $15/hour and is located in Hyderabad India.We are a company committed to creating diverse and inclusive environments where people can bring their full, authentic selves to work every day. We are an equal opportunity/affirmative action employer that believes everyone matters. Qualified candidates will receive consideration for employment regardless of their race, color, ethnicity, religion, sex (including pregnancy), sexual orientation, gender identity and expression, marital status, national origin, ancestry, genetic factors, age, disability, protected veteran status, military or uniformed service member status, or any other status or characteristic protected by applicable laws, regulations, and ordinances. If you need assistance and/or a reasonable accommodation due to a disability during the application or recruiting process, please send a request to HR@insightglobal.com.To learn more about how we collect, keep, and process your private information, please review Insight Global's Workforce Privacy Policy: https://insightglobal.com/workforce-privacy-policy/.Less

The Cyber Security Analyst will help the team to perform Security Operations Center (SOC) duties, which include incident response, malware analysis, and monitoring. This role will work with the team... More to implement processes and practices designed to protect networks, devices, and data from malicious attack, damage, or unauthorized access.?Triages alerts/incidents and performs deep analysis; correlates with threat intelligence tools, tactics and procedures (TTP) in indicators of compromise (IOCs) to identify the threat actor, nature of the attack, and systems or data affected.?Prioritizes and triages alerts or issues to determine whether a real security incident is taking place and escalate incidents to Tier 3 if remediation cannot be closed within SLA time.?Performs analysis, triage and remediation of low/medium priority alerts.?Analyzing logs, network traffic, and other data sources to identify the source of incidents.?Record identified vulnerabilities, create remediation tickets and track their status.?Build internal scripts, tools, and automation processes to enhance detection and response capabilities.?Adjusting security tools and processes, e.g. EDR alerting modifications, updating detection rules conditions, etc.We are a company committed to creating diverse and inclusive environments where people can bring their full, authentic selves to work every day. We are an equal opportunity/affirmative action employer that believes everyone matters. Qualified candidates will receive consideration for employment regardless of their race, color, ethnicity, religion, sex (including pregnancy), sexual orientation, gender identity and expression, marital status, national origin, ancestry, genetic factors, age, disability, protected veteran status, military or uniformed service member status, or any other status or characteristic protected by applicable laws, regulations, and ordinances. If you need assistance and/or a reasonable accommodation due to a disability during the application or recruiting process, please send a request to HR@insightglobal.com.To learn more about how we collect, keep, and process your private information, please review Insight Global's Workforce Privacy Policy: https://insightglobal.com/workforce-privacy-policy/.Less

Insight Global is actively hiring multiple Cyber Network Defense and Exploitation Analyst (Blue Team and Red Team) to join our team supporting a large Intelligence Program out of Fort Meade. The... More selected candidates will work on a team of Senior Analyst providing a wide range of Computer Network Operations (CNO) including Defensive Cyber Operations, Offensive Cyber Operations, and Exploitation Operations. Candidates should have s strong, hands on background in similar type environments, and have hands on experience with multiple intelligence tools, classified and unclassified cyber tools, and experience performing hands on Cyber Operations. An active TS/SCI with CI Polygraph is required for this position. Fullscope Polygraph is highly preferredSalaries offered will be based on candidates level of expertise, education, and clearance level; but likely fall between 150K - 300KWe are a company committed to creating diverse and inclusive environments where people can bring their full, authentic selves to work every day. We are an equal opportunity/affirmative action employer that believes everyone matters. Qualified candidates will receive consideration for employment regardless of their race, color, ethnicity, religion, sex (including pregnancy), sexual orientation, gender identity and expression, marital status, national origin, ancestry, genetic factors, age, disability, protected veteran status, military or uniformed service member status, or any other status or characteristic protected by applicable laws, regulations, and ordinances. If you need assistance and/or a reasonable accommodation due to a disability during the application or recruiting process, please send a request to HR@insightglobal.com.To learn more about how we collect, keep, and process your private information, please review Insight Global's Workforce Privacy Policy: https://insightglobal.com/workforce-privacy-policy/.Less

Insight Global is looking for a Sr. EDR Specialist that is able to take on a role that demands a fusion of technical expertise in Elastic SIEM, a solid grasp of cybersecurity fundamentals, and sharp... More analytical thinking to proactively defend against and respond to digital threats. The ideal candidate will also demonstrate strong communication skills to convey intricate security matters to diverse audiences.Responsibilities include, but are not limited to: Network Surveillance & Threat Detection: Conduct security analysis using tools such as IDS/IPS, firewalls, and host-based systems to identify intrusions.Elastic SIEM Operations: Leverage Elastic SIEM to correlate logs and events, uncover threat indicators, and generate actionable insights.Threat Intelligence & Research: Monitor emerging vulnerabilities and threat vectors to refine detection capabilities.Detection Strategy Implementation: Apply both endpoint and log-based detection techniques to identify and neutralize threats.SIEM Content Engineering: Design and tailor SIEM elements?rules, dashboards, and ML-based alerts?to meet client-specific needs.Cross-Platform Data Correlation: Integrate data from cloud, network, and endpoint sources to detect unauthorized activities.Alert Review & Incident Documentation: Analyze alerts from SIEM and other sensors, and produce detailed technical incident reports.Phishing Threat Analysis: Evaluate suspicious emails to determine risk levels and recommend appropriate countermeasures.Incident Response Support: Assist in containment and remediation efforts during security breaches.Collaboration with Threat Teams: Work closely with threat intelligence and hunting teams to stay informed on evolving threat landscapes.Security Tool Assessment: Participate in evaluating new cybersecurity tools and analytics for integration into managed services.Breach Investigation: Contribute to investigations of both large-scale and isolated security incidents.Stakeholder Engagement: Communicate findings and incident details effectively to internal and external stakeholders.We are a company committed to creating diverse and inclusive environments where people can bring their full, authentic selves to work every day. We are an equal opportunity/affirmative action employer that believes everyone matters. Qualified candidates will receive consideration for employment regardless of their race, color, ethnicity, religion, sex (including pregnancy), sexual orientation, gender identity and expression, marital status, national origin, ancestry, genetic factors, age, disability, protected veteran status, military or uniformed service member status, or any other status or characteristic protected by applicable laws, regulations, and ordinances. If you need assistance and/or a reasonable accommodation due to a disability during the application or recruiting process, please send a request to HR@insightglobal.com.To learn more about how we collect, keep, and process your private information, please review Insight Global's Workforce Privacy Policy: https://insightglobal.com/workforce-privacy-policy/.Less