Cloud MDR Analyst, SkillBridge Intern
Employment Information
Report this job
Job expired or something wrong with this job?
Job Description
Cloud MDR Analyst in Remote role monitoring and responding to threats targeting cloud environments. Work with seasoned MDR analysts to neutralize adversaries.
Responsibilities:
- Monitor and analyze anomalous behavior across Microsoft 365, Google Workspace and Cisco Duo environments, including suspicious sign-ins, OAuth application abuse, mailbox rule manipulation, data exfiltration indicators, and identity-based attacks
- Follow standardized Cloud Response playbooks to triage, escalate, and respond to security events across SaaS platforms, including account containment, session revocation, and admin remediation actions
- Investigate cloud-specific attack techniques such as Business Email Compromise (BEC), adversary-in-the-middle (AiTM) phishing, OAuth consent grant abuse, and privilege escalation via misconfigured cloud permissions
- Collaborate with Senior Analysts to research and investigate emerging cloud threat tradecraft and contribute recommendations for new detection logic targeting M365 and Google Workspace telemetry
- Proactively identify and mitigate false positives across cloud alert pipelines by working with senior analysts to suppress noisy or low-fidelity detections
- Collaborate with customers to review cloud security incidents and assist with detection, prevention, and mitigation strategies — including guiding clients through Microsoft Secure Score improvements and Google Workspace security posture reviews
- Leverage cloud-native audit logs — including Microsoft Unified Audit Log, Azure AD Sign-in Logs, and Google Workspace Admin Reports — to reconstruct attacker timelines and scope incidents
- Bring your observant and curious mindset to cloud investigations and security events!
Requirements:
- Minimum of 1-2 years of experience in an information security role; progressive relevant training and/or certification may be substituted for one year of the experience requirement
- Experience working in a SOC with cloud incident exposure preferred
- Working knowledge of Microsoft 365 security features including Microsoft Defender for Office 365, Microsoft Defender for Identity, Microsoft Entra ID (Azure AD), Conditional Access Policies, and the Microsoft Unified Audit Log
- Familiarity with Google Workspace security capabilities including Google Workspace Admin Console, Context-Aware Access, DLP policies, and Google Workspace Audit & Investigation Tool
- Understanding of cloud identity attack vectors such as credential stuffing, MFA bypass techniques (AiTM, SIM-swapping), OAuth phishing, and token theft
- Some knowledge of cloud-adjacent tradecraft including Living off the Land techniques applied to cloud environments, lateral movement via federated identity, and cloud persistence mechanisms
- Excellent problem-solving skills, critical thinking, and analytical skills with the ability to deconstruct issues and hunt anomalous patterns in cloud telemetry
- Excellent verbal and written communication skills to effectively summarize and present cloud incident findings to both technical and non-technical stakeholders
- Ability to work independently or as a member of a team in a shift-based environment
- Experience with CTF platforms or cloud security labs such as TryHackMe, PwnedLabs, or Microsoft Learn security paths are a plus.
Benefits:
- Competitive Health, Vision, Dental, and Life Insurance plans
- Robust 401k plan
- Discretionary Time Off
- Other minor perks
Similar Jobs
CCS System Analyst – OpenText, Kofax Total Agility
Systems Analyst supporting digital solutions within the Technology and Innovation ministry. Performing system analysis, design, and application development for provincial data access and management.
Principal Global Mobility Analyst
Global Mobility Analyst managing international and domestic assignments at Northrop Grumman. Supporting assignees throughout their lifecycle while ensuring compliance with regulations and policies.
IAM Analyst – Oracle Health EHR
IAM Analyst working on electronic health record modernization for GDIT's IHS program. Driving IAM initiatives and supporting systems for improved healthcare data access.
Zoning Analyst
Zoning Analyst at Blew & Associates for zoning research and application preparation. Collaborate with municipalities and ensure compliance with zoning laws and regulations.
Senior Analyst – Client Engagement Process Optimization
Process Optimization Analyst at Kraken supporting improvements in client engagement operations. Utilizing process mining and data analysis to enhance workflows and client satisfaction.
Board Certified Assistant Behavior Analyst, BCaBA
Remote Board Certified Assistant Behavior Analyst providing telehealth support. Join Finni Health in empowering Michigan families with personalized clinical care.
Senior Contract Analyst
Senior Contract Analyst managing contractual agreements to ensure compliance for clinical research at ICON. Collaborating with stakeholders and supporting project teams to optimize contract processes.
Investigator Contracts Lead, Contract Analyst II
Contract Analyst II at ICON analyzing contracts and clinical trial data. Collaborating on regulatory compliance and contract management in the healthcare sector.
Payment Analyst
Grants Specialist at ICON responsible for grant application management and compliance. Collaborating with stakeholders to develop compelling proposals for clinical development.
Cost Estimating Analyst – Level 2 or 3
Cost Estimating Analyst for Northrop Grumman's Space Systems sector leading proposals and financial analysis. Collaborating with teams to ensure accurate cost estimating and proposal evaluations.
Senior Category Analyst
Category Analyst reporting to the TBG Canada Head of Commercial. Manage Wal-Mart analytics and support commercial strategies for Tropicana Brands Group.
Catastrophe Modeling Analyst – Property Treaty
Catastrophe Modeling Analyst focused on evaluating property treaty risks. Collaborating with underwriting teams and analytics for catastrophe modeling and reporting.
Customer Interactions Analyst
Customer Interactions Analyst at Cencora driving operational excellence and improving customer interactions through collaboration and data analysis.
Data Modeling Analyst III – Senior
Senior Data Modeling Analyst developing analytical solutions for credit risk using Python and Machine Learning. Collaborating with teams to optimize and maximize client decisions with data-driven insights.
Quality Analyst – Cybersource
Quality Analyst responsible for AI-enabled quality assurance at Visa. Analyzing quality data, conducting reviews, and influencing operational change within the organization.
Registered Nurse, Remote Patient Monitoring Analyst
Registered Nurse monitoring remote patient data and engaging with patients for Guidehealth. Utilizing clinical judgment and collaboration to prevent clinical deterioration.
Senior RCM Analyst
Senior RCM Analyst at Belle managing medical claims and revenue cycle functions with a focus on expansion and operational efficiency. Collaborating cross-functionally with Finance and Practice Operations teams.
Analyst I, Certification
Analyst responsible for analyzing and classifying certification applicants for LegitScript. Utilizing big data, open-source intelligence, and best practices to ensure compliance and safety.
Functional Analyst
Jenzabar Functional Analyst providing functional support for Jenzabar systems at higher education institutions. Ensuring effective use of the platform through implementation and training.
Change Analyst
Change Analyst managing end-to-end Change Management process for RS Group. Coordinate change activities, ensure adherence to best practices, and engage stakeholders effectively.