senior mdr analyst

Full-Time - Remote - Australia / UK / Hawaii

Why Blackpoint? 

Ready to give some hackers hell? On the Blackpoint Cyber Team, we win the unfair fight while helping others protect what’s most important to them. Simply put, our team takes out the adversaries before they see us coming. Join us today and help put the bad guys in their place for good. 

Blackpoint Cyber was built by former US Department of Defense and Intelligence security experts focused on stopping malicious tradecraft and safeguarding MSP operations. Our mission? Provide absolute and unified Managed Detection and Response services to organizations across the world. 

 

Company Culture 

On this team, we value high-quality execution, ownership, and strong morals. With us, principles are never tested, and we are proud to always do right by our customers. If you’re a driven professional with a passion for learning and contributing towards the best, then Blackpoint welcomes you. Our team is energetic and collaborative, maintaining a high-performance culture and enabling growth through overcoming challenges in the modern cyberthreat landscape.  

 

What You’ll Do 

Blackpoint is searching for a Senior MDR Analyst to support its 24/7 Managed Detection and Response (MDR) service in Ellicott City, MD. The position requires the ability to organize and lead proactive threat hunts to detect and analyze anomalies using Blackpoint’s proprietary cyber security platform, SNAP-Defense, as well as other security products within the company infrastructure. Analyst will also integrate engineered solutions, implement security controls, and collaborate on IT requirements across multiple divisions within the company. 

 

What You’ll Bring 

 
  • One (1+) years of experience in a role that involves Information Security 
  • One (1+) years of experience with triaging security events related to malware, security log analysis (SIEM), Endpoint Detection and Response (EDR) Tools, and supporting the Incident Response (IR) process. 
  • Deep knowledge on assessing threat indicators in a Windows Environment (e.g. Malware/Malicious Anomalies/Abnormal network Activity/Root Level Compromise, Forensic Artifacts, etc.) 
  • Familiarity with ELK stack (Dashboards, Logstash Config, Searching) 
  • Scripting / Programming with Python, PowerShell, Go 
  • Experience in developing, refining, and performing advanced analysis to uncover new or potential incidents and report on results. 
  • An advanced understanding of current threats and trends present in the Information Security and Technology field. 
  • Ability to work shifts if required (night, weekends, and day shifts). 
  • Excellent problem solving, critical thinking, and analytical skills with the ability to deconstruct issues (hunting anomalous pattern detection) 
  • Excellent communication skills to effectively summarize and present findings 
 

Optional Requirements 

 
  • Bachelor’s Degree in Computer Science or related technical discipline 
  • Certifications (GIAC Certifications, OSCP) 
  • Network/System Administration and/or Engineering 
  • Deep forensic knowledge of Mac OS and/or Linux 
  • Malware Analysis (Behavioral and/or Static analysis- IDA, Cuckoo Sandbox, x86/x64 Debugging) 
  • Pentesting/Red/Blue Team 
  • Software Development 
 

How You’ll Make an Impact 

 
  • Analyze and evaluate anomalous network and system events in a 24×7 Security Operation Center (SOC) environment. 
  • Conduct threat hunting operations that deliver anomalous activity and potential adversary Tactics, Techniques, and Procedures (TTPs) 
  • Provide actionable threat and vulnerability analysis based on security events for many independent customer environments 
  • Collaborate with Level 2+ Analysts to research and investigate emerging cyber security threats 
  • Collaborate and become an escalation point of contact for Level 1 Analysts 
  • Recommend modification to security tools to detect, prevent, and mitigate intrusions 
 

Interested?  

To apply, please prepare a resume and cover letter showcasing your skillset with our requirements in mind. For more information about Blackpoint Cyber, visit our website at www.blackpointcyber.com 

Blackpoint Cyber welcomes and encourages applications from qualified individuals of all races, color, religion, sex, sexual orientation, gender identity or expression, national origin, age, marital status, or any other legally protected status. We are committed to equality of opportunity in all aspects of employment. 

We thank everyone for their interest, but only those candidates selected for an interview will be contacted. 

Blackpoint’s Response to COVID-19 

We take a very proactive response to COVID-19 with all staff working remotely from home. Hygiene protocols are in place throughout the building and office if there is a need to visit. Our company’s systems and processes are set in such a manner that there should be no limitations to your productivity when working from home. We are in constant communication globally. During these challenging times, Blackpoint Cyber takes the opportunity to envision a new way of working together while continuing to collaborate meaningfully with those whom we serve and defend. 

Apply Today

Please upload your current resume and cover letter (.docx, .doc, .pdf only. 5MB max file size)