Work Experience
  • 👋Welcome!
  • Security Operations: Leahy Center
    • Security Technician
    • Security Analyst
    • Security Training Supervisor
  • Security Operations: Wawa
    • Splunk Guide
    • Excel Training
  • DevOps: Leahy Center
    • 🤝How we Work Together
    • 📅Meetings
Powered by GitBook
On this page

Security Analyst

Job Information

Description: Security Analysts at the Leahy Center are responsible for the monitoring of and response to SIEM alerts for clients and the internal Leahy Center network, as well as providing regular client reports. Analysts utilize the Kibana interface on an Elastic Stack to investigate alerts corresponding to rules written in EQL (Elastic Query Language) and KQL (Kibana Query Language) that describe known suspicious and malicious activity. Analysts must use network and endpoint logs to ensure that these alerts are benign or, if they are suspicious, report and further investigate the incident in accordance with proper incident response protocols.

Dates: January 2022 - October 2022

PreviousSecurity TechnicianNextSecurity Training Supervisor

Last updated 8 months ago

Page cover image