Analyst, Managed Security Systems SIEM/EDR

at  CDW

Description
Bring your IT career and talents to CDW, where you can have a greater impact, be inspired by our mission and excited about your career and future. A Fortune 200 leader, we’re the driven professionals and technology experts companies turn to most to solve their IT challenges.

OTHER POSITION REQUIREMENTS:

• The candidate must be proactive and pay attention to details.
• works collaboratively with other teammates.
• Takes ownership and drives issues towards a resolution.
• A good understanding of IT infrastructure systems, Cybersecurity fundamentals, vulnerability management fundamentals, endpoint and server administrations, network routing and switching, network traffic analysis and administration.
• Ability to acquire technical skills and certifications required to effectively execute the role, develop familiarity with industry or specialty products/services, and apply the knowledge gained through training.
• Ability to investigate problems and use standard operating procedures and processes to resolve them.
• Good troubleshooting and problem-solving skills. Possess an innate curiosity and critical thinking mindset.
• Ability to establish positive working relationships and contribute to team objectives in a consulting environment.
• Good verbal, written communication skills and the confidence to engage the clients effectively.
• Proven time management and organizational skills
• Word, Excel, Visio, PowerPoint, and Outlook skills

WHO WE ARE:

CDW is a leading technology solutions provider to business, government, education and healthcare organizations across the globe. Our fingerprints can be found on technology in workplaces of more than 250,000 companies; from fresh-faced start-ups to international conglomerates. With the breadth of products and services we offer, there is no request too big or too small.

THIS ROLE WILL SUPPORT OUR MISSISSAUGA, ONTARIO AREA SECURITY OPERATIONS CENTRE, AND CAN BE BASED WITHIN THE GREATER TORONTO AREA, OR REMOTELY FROM ELSEWHERE IN CANADA. FOR THIS ROLE, WE’RE SEEKING AN INDIVIDUAL WITH A STRONG BACKGROUND IN EDR, XDR (CROWDSTRIKE, CORTEX XDR, WINDOWS DEFENDER, SENTINELONE) AND SIEM TOOLS WITH A GOOD LEVEL OF EXPERTISE IN NAVIGATING WINDOWS AND LINUX FILE SYSTEMS VIA THE COMMAND LINE OR USING POWERSHELL. EXPERIENCE SCRIPTING IN (BASH, POWERSHELL OR PYTHON) IS AN ADVANTAGE. KNOWLEDGE OF CYBER SECURITY FRAMEWORKS SUCH AS MARTIN LOCKHEED KILL CHAIN, MITRE ATT&ACK, PYRAMID OF PAIN AND DIAMOND MODEL OF INTRUSION ANALYSIS. SOLID UNDERSTANDING OF WINDOWS, LINUX AND OR MAC PROCESS INTERNALS, STRUCTURE AND OR INFORMATION WOULD BE EXTREMELY BENEFICIAL.

The Analyst performs in depth investigation of security incidents, writes an incident report with details of the investigation findings, initiates response actions if applicable and provides applicable recommendations and next steps to the client based on the findings from the investigation. The Analyst applies trusted advisor techniques on all engagements with clients.

ESSENTIAL FUNCTIONS:

The position is part of a 7 day per week, 24 hour per day managed services operations. To provide the required coverage, must be willing to work other shifts including weekends, holidays, and overtime.
The above primary duties, responsibilities, and position requirements are not all inclusive.