Senior MDR Analyst - Swing Shift (M-F 4 PM - 12 AM ET)

📋 Description

• • Blackpoint Cyber is at the forefront of cybersecurity, providing world-class threat hunting, detection, and remediation technology. Founded by former NSA cyber operations experts, we bring national security-grade solutions to commercial clients globally. Currently in a hyper-growth phase, fueled by a significant $190 million Series C funding round, we are expanding our team and seeking a highly skilled Senior MDR Analyst to join our dynamic Security Operations Center (SOC).
• • This role is crucial for maintaining our 24x7x365 SOC operations, specifically focusing on the Tuesday - Saturday swing shift from 4 PM to 12 AM ET. Please note that these hours are non-negotiable, and applicants must ensure full availability before applying. Your primary responsibility will be to analyze and evaluate anomalous network and system events, proactively identifying potential security threats through leadless threat hunting.
• • As a Senior MDR Analyst, you will collaborate closely with other MDR Analysts, acting as an escalation point for advanced intrusion analysis. This involves deep dives into complex security incidents, understanding the nuances of threat actor tactics, techniques, and procedures (TTPs).
• • A key aspect of your role will be researching and investigating emerging cybersecurity threats. You will stay ahead of the curve by continuously learning about new attack vectors, malware, and vulnerabilities, and translating this knowledge into actionable intelligence for our clients.
• • You will be responsible for developing comprehensive Incident Analysis Reports. These reports will detail the nature of security incidents, their impact, and recommended remediation steps. Effective communication and collaboration across business units and directly with customers will be essential to ensure timely and successful resolution of issues.
• • Beyond incident response, you will play a vital role in shaping our operational capabilities. This includes helping to design and build new operational processes and procedures aimed at improving overall SOC efficiency and effectiveness. Your contributions will directly impact our ability to detect and respond to threats more rapidly and accurately.
• • You will provide actionable threat and vulnerability analysis based on security events observed across a diverse range of independent customer environments. This requires a strong understanding of various IT infrastructures and the ability to tailor analysis to specific contexts.
• • To further enhance our threat intelligence and detection capabilities, you will build and maintain test lab environments. These environments will be used to research emerging techniques, test new security tools, and contribute to both internal and external knowledge development regarding threat operations.
• • A significant part of your work will involve reviewing sandbox technologies and analyzing artifacts uncovered during investigations to identify additional Indicators of Compromise (IOCs). This deep technical analysis is critical for understanding the full scope of an attack.
• • You will leverage your expertise to deconstruct complex issues, employing excellent problem-solving, critical thinking, and analytical skills, particularly in hunting for anomalous patterns and detecting sophisticated threats.
• • Your ability to communicate technical findings effectively, both in writing and verbally, to both technical and non-technical audiences will be paramount. You will summarize and present complex security incidents and analysis in a clear and concise manner, ensuring stakeholders understand the risks and necessary actions.
• • This role offers a unique opportunity to contribute to a rapidly growing company with a mission to protect businesses from evolving cyber threats. You will be part of a high-performance culture that values ownership, strong morals, and a commitment to doing right by our customers. We foster an energetic and collaborative team environment where challenges in the modern cyber threat landscape are met with innovation and continuous learning.