Information Security Analyst

Your Job

Cyber Security - Information Security analysts are ultimately responsible for ensuring that the company's digital assets are protected from unauthorized access.

This includes securing both online and on-premises infrastructures, weeding through metrics and data to filter out suspicious activity, and finding and mitigating risks before breaches occur.

If a breach does occur, security analysts are often on the front line, leading efforts to counter the attack.

Our Team

As part of the Information Security analysts, we perform security monitoring, event analysis, and incident response activities across the Koch Entities, leveraging a variety of tools and techniques.

Prioritize multiple high-priority tasks and formulate responses/recommendations to customers and team members in a fast-paced environment.

What You Will Do



* Perform security monitoring, event analysis, and incident response activities across the Koch Entities, leveraging a variety of tools and techniques.


* Follow detailed operational processes and procedures to appropriately analyze, escalate, and assist in the remediation of information security events and incidents.


* Prioritize multiple high-priority tasks and formulate responses/recommendations to customers and team members in a fast-paced environment.


* Identification of security gaps, mitigation strategy, implementation & tracking till closure


* Thoroughly document incident response analysis activities


* Collating metrics and reporting from security tools.


* Continuously improving incident response process by identifying the gaps in the process.


* Conduct and lead incident response call and function as incident coordinator.

Who You Are (Basic Qualifications)



* Minimum of 5 years of overall experience in the IT industry.


* At least 3-4 years of work experience in Information Security, SOC, incident response, and cybersecurity.


* Excellent understanding of cybersecurity incident response and mitigation methods.


* Proficiency in event logging and SIEM technologies, preferably Splunk.


* Experience in malware incident investigation, including malware analyses (static and dynamic), with administrative knowledge of the CrowdStrike tool.


* Familiarity with phishing email investigation and administrative knowledge of Proofpoint.


* Strong understanding of network defense principles, common attack vectors, and attacker techniques.


* Experience with MITRE ATT&CK framework and related TTPs.


* Practical experience with EDR and DLP solutions.


* Specialized knowledge in AWS Cloud Security services and concepts.


* Good understanding of digital forensic concepts and analysis techniques.


* Technical baseline skills and the ability to acquire in-depth knowledge of network and host security technologies.


* Strong analytical and problem-solving skills.


* Knowledge of network protocols such as TCP/IP, Dynamic Host Configuratio...