|Preferred GIAC Certifications||GCIH, GCIA, GMON|
Security analysts are responsible for analysis and review of reports, logs and various sources of informational data relating to security events. The analyst must be knowledgeable of current security issues and compliance-related information and possess the ability to respond to and escalate issues as needed.
The analyst uses, implements, reviews, or evaluates systems to identify threat actors in their attempts at infiltrating user, customer, or corporate information or jeopardizing product infrastructure. The analyst researches attempted or successful efforts to compromise systems and protocols. Provides information and reports to management regarding impact of breaches to confidentiality, integrity, availability, or disruption to delivery of services. May also be involved with and act as an interface to, corporate peers on implementation of company-wide security solutions.
Analysts are responsible for reviewing alerts that that have been generated by various security tools and effectively identifying the correct remediation or escalation path. Analysts will triage prioritized alerts using the corporate Security Information and Event Management (SIEM) system to determine if they are in fact legitimate alerts, ere false positive alerts, or require additional review.