Threat Analyst
Employment Information
Report this job
Job expired or something wrong with this job?
Job Description
MDR Threat Analyst investigating cyber threats with enterprise systems at Sophos. Collaborating with analyst teams to ensure effective incident detection and response.
Responsibilities:
- Investigate escalated security alerts and incidents across endpoint, network, cloud, and identity environments.
- Perform structured analysis to determine root cause, attack scope, lateral movement, and potential impact.
- Support ransomware investigations by analysing attacker activity, credential abuse, persistence mechanisms, and malware behaviour.
- Deobfuscate suspicious scripts, malware samples, and other indicators to identify malicious activity.
- Conduct proactive threat hunts based on defined hypotheses and emerging threat intelligence.
- Investigate suspicious authentication activity, privilege escalation, and identity misuse.
- Perform investigations on both Windows and Linux systems, including log and process analysis.
- Correlate data across multiple sources, including EDR, SIEM, cloud logs, and identity platforms.
- Document investigative findings clearly and provide actionable remediation guidance to clients.
- Collaborate with senior analysts during high-severity or complex incidents.
- Contribute to detection tuning and improvement of response playbooks based on investigation outcomes.
- Participate in a rotational schedule supporting a 24x7x365 MDR environment.
Requirements:
- 4–6 years of experience in a SOC, MDR, Incident Response, or related cybersecurity operations role.
- Experience investigating endpoint and network security alerts using EDR and SIEM platforms.
- Working knowledge of ransomware attack patterns and common intrusion techniques.
- Hands-on experience investigating Linux and Windows systems.
- Experience analysing obfuscated scripts, malware behaviour, and performing deobfuscation to identify malicious activity.
- Familiarity with adversary tactics and techniques, and practical exposure to the MITRE ATT&CK framework.
- Experience analysing Windows Event Logs, Linux logs, and Active Directory fundamentals.
- Basic understanding of cloud and identity security investigations, including suspicious authentication activity and privileged account misuse.
- Ability to analyse network traffic, including TCP/IP, DNS, and HTTP/S.
- Scripting knowledge, including PowerShell; Python or other languages is mandatory.
- Strong documentation skills and attention to investigative detail.
- Security certifications such as Security+, CySA+, GCIH, or equivalent are a plus. Bachelor’s degree in Information Technology, Computer Science, or related field, or equivalent professional experience.
- Strong analytical and troubleshooting skills.
- Ability to manage multiple investigations in a fast-paced environment.
- Clear written and verbal communication skills.
Benefits:
- Sophos operates a remote-first working model, making remote work the primary option for most employees.
- Employee-led diversity and inclusion networks that build community and provide education and advocacy
- Annual charity and fundraising initiatives and volunteer days for employees to support local communities
- Global employee sustainability initiatives to reduce our environmental footprint
- Global fitness and trivia competitions to keep our bodies and minds sharp
- Global wellbeing days for employees to relax and recharge
- Monthly wellbeing webinars and training to support employee health and wellbeing
Similar Jobs
COE Enablement Analyst
COE Enablement Analyst supporting day-to-day operations and various initiatives at Quartile. Involves project tracking, content organization, and stakeholder management.
Lead Applications Analyst, SAP
Lead Applications Analyst designing and implementing solutions within SAP Cloud for Sales and Service. Collaborating with teams to optimize system performance and ensure scalability.
Clinical RN High Cost Claimant Analyst
Clinical RN High Cost Claimant Analyst analyzing high cost claimant reports to support internal teams at Cigna's Encore program. Requires active RN license and CCM certification or BSN preference.
Senior Analyst, WFM, Reporting
Senior Analyst managing workforce and reporting for Finanzen.net, an innovative financial tech company supporting investors. Focus on workforce management, forecasting, and client engagement.
Senior Administrative Routines Analyst
Analista de Rotinas Administrativas Sr at Spread Tecnologia facilitating project management and administrative oversight.
IndySoft Analyst
IndySoft Analyst at Accredited Labs responsible for managing calibration management platform and ensuring data quality across systems. Collaborating across teams to enhance user experience and optimize data flow.
Analista JR de Soluções e Contratações de Redes
Support various aspects of network infrastructure contracts at Brasil TecPar. Focus on documentation, analysis, and effective communication with clients and suppliers.
Quality Analyst – Coding Services
Coding Services Quality Analyst ensuring accuracy and compliance in healthcare records for AAPC. Performing audits, monitoring compliance, and providing training and feedback to coders.
Senior Analyst, User Lifecycle Analytics
Senior Analyst developing insights for user lifecycle analytics in Paramount Streaming. Analyzing data to inform strategies for content and subscriber growth initiatives.
Integration Analyst
Analista de Integração position at Mercos focusing on ERP integration solutions. Collaborate with business managers to enhance client experiences and commercial success.
Senior IT Analyst
Senior TI Analyst at Stefanini developing and maintaining IT systems, ensuring solution quality and performance with team collaboration.
IT Analyst
Analista de TI Pleno na Stefanini, focado em análise e desenvolvimento de sistemas e co-criação de soluções inovadoras. Oportunidade de crescimento profissional em um ambiente de transformação.
Monitoring Analyst (Mid-level)
Zabbix Administrator managing Zabbix platform in a productive environment for Stefanini. Collaborating on monitoring and automating industrial automation services in Brazil.
Budget Management Analyst, III
Budget Analyst responsible for strategic leadership and financial management at Grupo Boticário. Collaborating with various teams to ensure effective decision-making and compliance as part of financial planning.
Analista em Estatistica PL
Analista em Estatística supporting cost control activities in a tech company committed to diversity. Collaborate with teams on various cost management tasks and reporting to enhance financial efficiency.
Quality Analyst, Mid-level
Quality Analyst responsible for ensuring software quality in development at Cadmus. Collaborating across teams and automating tests in NET and React environments.
Material Master Data Analyst
Analista de Cadastro de Materiais ensuring data integrity and quality at a top-tier consulting firm. Working with SAP and GUEPARDO Tax to support tax-related decisions.
Senior Drug Rebate Analyst
Senior Drug Rebate Analyst reviewing Medicaid Drug Rebate payments while resolving disputes. Involves ensuring compliance, training new hires, and engaging with pharmacy and drug manufacturers.
Senior Analyst
Senior Analyst leading project solutions and managing analytical workstreams for SAMHSA's 988 initiative. Collaborating with teams to advance awareness and utilization of 988 services across the United States.
Senior Analyst, UBIF SCM Support
Senior Analyst supporting supply chain operations at Asurion. Managing inventory forecasts, supplier performance, and collaborating on process improvements in a fast-paced environment.