Threat Detection and Response Analyst

We are looking for a dedicated professional to join our cybersecurity team as a Threat Detection and Response Analyst. This critical role involves protecting the organization’s operations and client trust by proactively identifying and responding to cyber threats, as well as ensuring swift recovery from security incidents. The successful candidate will contribute to embedding robust security practices within the company and collaborate with various departments to maintain a secure operating environment.

The organization operates in a dynamic landscape shaped by emerging technologies, evolving cyber threats, and regulatory challenges. This role supports the broader mission of driving secure and efficient business processes while embracing innovation.

Requirements:

• A degree in IT, Cybersecurity, or related discipline, or equivalent professional qualifications.
• At least three years of experience in cybersecurity, with a focus on Threat Detection and Response operations.
• Strong expertise in handling security incidents, including detailed root cause analysis and resolution.
• Familiarity with incident response methodologies (e.g., Cyber Kill Chain, Diamond Model) and hands-on experience with SIEM platforms.
• Knowledge of security tools and technologies, such as endpoint detection, logging systems, and threat analysis platforms.
• Proficiency in network protocols (e.g., DNS, HTTP) and operating systems, with experience analyzing file systems and memory artifacts.
• Prior exposure to high-pressure environments like a 24/7 Security Operations Center (SOC).
• Relevant certifications (e.g., GCIA, GCIH, GCFA) are a significant advantage.

Competencies:

• Excellent analytical and decision-making skills to evaluate complex security incidents.
• Strong verbal and written communication skills, with the ability to convey technical concepts to diverse audiences.
• Ability to work collaboratively across multiple teams and functions.
• Passion for continuous learning and staying informed about evolving cyber threats.

Preferences:

• Familiarity with industries such as logistics, supply chain, or transportation is a plus.
• Experience automating security workflows to optimize response efficiency.
• Proficiency in training team members and developing comprehensive incident response strategies.

Relevant terms: Threat Detection and Response, cybersecurity, incident response, SIEM systems, Cyber Kill Chain, Diamond Model, threat hunting, network protocols, DNS, HTTP, SMB, endpoint detection, logging systems, root cause analysis, 24/7 Security Operations Center, SOC, cybersecurity certifications, GCIA, GCIH, GCFA, Security+, Network+, proactive threat hunting, incident management, security automation, cybersecurity tools, Microsoft Azure Sentinel, Microsoft Defender, QRadar, Palo Alto XSIAM, cyber threat analysis, regulatory compliance, information security, supply chain cybersecurity.

Base Cyber Security assists organizations in building knowledge and capabilities in the field of information security. Supporting organizations in forming robust infosec teams or finding the right cybersecurity experts to meet the organization’s needs is a significant part of our mission.

We collaborate with security professionals on a global scale for information and cybersecurity positions and projects throughout Europe. Whether you’re at the beginning of your career in information security, seeking advice for your career path, or looking for guidance on continuous self-development and decision-making, we are here to help and would love to connect with you!

If you haven’t registered yet, make sure to do so now! Send us your details at [email protected] and follow us on X/Twitter @BaseCyberSec to stay updated on our activities and relevant information. By registering yourself in our security community and expressing interest in a specific role, project, or team, you expressly grant us permission to use your data, collected and processed by Base Cyber Security in an ethical and discreet manner, and where necessary, in compliance with the General Data Protection Regulation (GDPR).