Apply Now >>    
Posting Date :
Primary Location :
Atlanta Area, GA US
Work Address :
285 Peachtree Center Ave
Job ID :
Schedule :
Job Description :
Job Description


The Cyber Security Incident Analyst will investigate and respond to alerts of potential or active threats, intrusions, and/or compromises.  Additionally, the Cyber Security Analyst may participate in the forensic collection and analysis of digital evidence to support HR, Legal, and other investigations.



Primary Responsibilities include:

  • Monitor and triage detected events to identify suspicious activity and to determine incident validity
  • Prioritize and differentiate between potential attacks, intrusions attempts, and false positives
  • Collect initial IOCs (indicators of compromise ) and determine the scope of the compromise
  • Establish the timeline of events and correlate multiple alerts related to the same incident, as necessary

·         Document and communicate incident investigation / triage results, in accordance with established reporting procedures

  • Develop and demonstrate high level proficiency utilizing security platforms related to logging, event correlation & incident management
  • Perform other cyber incident monitoring and triage actions, as assigned



Minimum Requirements:

Basic knowledge of common IT and security concepts with emphasis on TCP/IP network security, operating system security, modern attack and exploitation techniques, cyber incident response, malware analysis, computer forensics and the tools that support these processes. Ability to analyze solutions using deductive reasoning and critical thinking to solve problems in straightforward situations. Demonstrated teamwork and collaboration skills. Strong time management skills and ability to manage competing priorities effectively. Effective verbal and written communication skills for the purpose of providing basic information about event timelines, technical designs, system concepts and business impact. Ability to obtain requisite technical certification(s) within six months of hire.


Preferred Requirements:

  • Bachelor's degree in Information Security, Information Technology, Computer Science or similar field with at least one year in a cyber security-specific role
  • Experience within a security operations environment (SOC) with emphasis on cyber security incident management, network, host and application security, intrusion detection and/or other security event analysis
  • Experience with log and packet analysis tools and techniques
  • Working knowledge of security incident response tools, SIEM, working knowledge of Windows, UNIX/LINUX operating systems, and networking devices
  • Ability to perform surface malware analysis to help understand the type of malware, properties, and basic facts from a high-level perspective
  • Scripting ability / programming languages - experience in:  C, Perl, Awk, Java, shell (all variations), and other scripting tools
  • One or more of the following (or similar) certifications: Security+, GSEC, GCIA, GCIH, GCFA, GCED, GPEN, GWAPT, GREM, CEH, or CISSP


Equal Opportunity Employer: SunTrust supports a diverse workforce and is a Drug Testing and Equal Opportunity Employer. SunTrust does not discriminate against individuals on the basis of race, creed, color, gender, religion, national originTo review the EEO Poster, copy and paste the following link into your browser:
Apply Now >>    
Link for schema