Cloud Security Analyst
About The Position
Snowbit is a cybersecurity technology innovator with a vision to empower organizations across the globe to quickly, efficiently, and cost-effectively ready themselves to address omnipresent cyber risk. Built off years of Israeli cybersecurity experience, Snowbit is looking to offer the broadest managed detection and response offering available today.
Snowbit is part of the Coralogix group, with Coralogix rebuilding the path to observability by offloading the burden of indexing and providing deep insights, at an infinite scale, for less than half the cost.
Joining this team provides a unique opportunity to build a global security resource center and benefit from the best of Israeli cybersecurity talent and influence the direction of a world-class offering in the cybersecurity domain.
- Understand the Snowbit offering and customer cloud and security deployments/environments
- Triage and analyze various security assessments and timely investigate security incidents . Formulate, communicate and engage with customers on related alerts and remediation instructions. This will include applying playbook-driven solutions, initiating incident investigations/response and escalating to the Security Research Group as required.
- Promptly resolve customer tickets and be the first point of contact for customer escalations.
- Document assessments, recommendations and customer engagements till resolution
- Work closely with multiple teams (CSM, Security Research, Incident Response, Product) to resolve customer events/incidents/escalations and evolve the Snowbit offering
- Share learnings and best practices amongst team members including keeping internal knowledge databases updated
- Handle multiple competing priorities and high impact incidents/escalations
- Bachelors’ degree in Computer Science/Engineering, Electrical Engineering or related domain certifications
- 2-3 years experience in customer-facing operations roles with SOC/MDR teams handling multiple customers preferably in the cyber security/network security domains
- Experience in or knowledge of cybersecurity assessments and incident management
- Experience with security solutions such as SOC, MDR, SIEM, SOAR, WAF, IPS, DAM, etc.
- Understanding the cyber-security landscape including common threats and attack scenarios
- Experience with monitoring, ticketing, and CRM tools
- Strong team player with the flexibility to work in shifts in a 24x7x365 environment
- Strong communication skills including high proficiency in English
- Ability to deal with multiple customer profiles and personalities
- Experience with cloud services (AWS, Azure, GCP)
- Knowledge of networking architecture and protocols (TCP/IP, HTTP, DNS, TLS etc.)
- Knowledge of Cloud security principles
- Security certifications such as CEH, CSA, OSCP, OSWE, or OSEE