Key skills
Cyber SecurityFirewallsLinuxPythonTCP/IPBashPowerShellCommunication
About this role
Role Overview
- Support the security team in identifying, analyzing, and mitigating security threats.
- Gain exposure to security operations, threat intelligence, and incident handling.
- Assist in the development and implementation of a threat intel management platform.
- Assist in monitoring security events and alerts using SIEM tools.
- Participate in incident response activities, including triage, analysis, containment, and remediation of security threats.
- Conduct research on emerging cybersecurity threats and best practices.
- Assist in documenting security incidents, vulnerabilities, and response actions.
- Collaborate with IT and security teams to improve security controls and policies.
- Gain hands-on experience with cybersecurity tools, such as endpoint detection and response (EDR), and vulnerability scanners.
- Help define and document intel handling workflows (ingest, scoring, deconfliction, expiration, and dissemination).
- Support development of playbooks/automation for indicator enrichment and triage.
Requirements
- Currently pursuing a degree in Computer Science, Information Security, or a related field.
- Basic understanding of cybersecurity concepts, including threat detection, incident response, and vulnerability management.
- Familiarity with operating systems such as Windows and Linux.
- Knowledge of networking fundamentals (TCP/IP, firewalls, intrusion detection systems).
- Strong analytical and problem-solving skills.
- Ability to work in a team-oriented environment with excellent communication skills.
- Hands-on experience with cybersecurity tools (e.g., SIEM, IDS/IPS, vulnerability scanners) preferred.
- Knowledge of scripting languages (Python, PowerShell, Bash) for automating security tasks preferred.
- Basic understanding of APIs/data formats (JSON, REST) preferred.
- Familiarity with threat intel concepts like IOCs, TTPs, and frameworks such as MITRE ATT&CK preferred.
- Exposure to tools/platforms adjacent to MISP (case management, SOAR concepts, enrichment tools) preferred.
- Certifications in progress (e.g., Security+, CEH, or CYSA+) are a plus.
Tech Stack
- Cyber Security
- Firewalls
- Linux
- Python
- TCP/IP
Benefits
- Medical, dental, and vision coverage
- Company contribution to health savings account
- Telemedicine
- Life and disability insurance
- Legal insurance
- 401(k) savings plan
- Wellness programs focused on physical, emotional, and financial well-being
- Flexible work schedules with 9/80 program
- Competitive vacation
- Health/emergency leave
- Paid parental leave
- Community service hours