Blackpoint Cyber is the leading provider of world-class cybersecurity threat hunting, detection and remediation technology. Founded by former National Security Agency (NSA) cyber operations experts who applied their learnings to bring national security-grade technology solutions to commercial customers around the world, Blackpoint Cyber is in hyper-growth mode, fueled by a recent $190m series C round.
What You’ll Do:
Blackpoint Cyber is seeking a MDR Analyst with demonstrated experience in Security Operations/Cyber Security to join our team. As a member of our Threat Operations Center, you will play a crucial role in protecting our clients from cyber threats and taking out adversaries before they can do harm.
This will be a day shift position (M-F, 8am-4pm ET). Please only apply if those hours work for you.
How You’ll Make an Impact:
Analyze and evaluate anomalous behavior occurring endpoints in the 24x7 SOC/MDR environment
Follow standardized security playbooks to triage, escalate, and respond to security events
Collaborate with Senior Analysts to research and investigate emerging cybersecurity threats and make recommendations for new detection logic
Proactively identify and mitigate false positives by working with senior analysts to suppress noisy detections
Recommend modifications to security tools and network configurations to assist customers with detection, prevention, and mitigation of instructions
Bring your observant and curious mindset to investigations and security events!
What You’ll Bring:
Minimum of 2-3 years of experience in an information security role
Progressive relevant training and/or certification may be substituted for one year of the experience requirement
Experience working in a SOC. Threat Hunting, or Digital Forensics and Incident Response (DFIR) is preferred
Some knowledge of aspects such as Living off the Land binaries and Scripts, pen testing concepts, malware functionality, endpoint solutions (A/V, EDR), Windows Active Directory, etc.
Excellent problem solving skills, critical thinking, and analytical skills with the ability to deconstruct issues (hunting anomalous pattern detection)
Excellent communication skills to effectively summarize and present findings
Ability to work independently or as a member of a team
Scripting capabilities (Python, Bash, GO, Rust) and experience with CTFs or learning platforms such as TryHackMe are a plus
Certifications such as eJPT, eCTHP, OSCP, PNPT are a plus
Blackpoint Cyber welcomes and encourages applications from qualified individuals of all races, colors, religions, sex, sexual orientation, gender identity or expression, national origin, age, marital status, or any other legally protected status. We are committed to equality of opportunity in all aspects of employment.
We thank everyone for their interest, but only those candidates selected for an interview will be contacted.
