Information Security Analyst

Job Title: Cybersecurity Analyst (CrowdStrike, Splunk, Incident Response) Location: Southfield, MI No C2C Job Overview: We are seeking a highly skilled and certified Senior Cybersecurity Analyst with expertise in CrowdStrike, Splunk, and Incident Response (IR). The ideal candidate will be responsible for conducting advanced threat hunting, building detection content, responding to security incidents, and contributing to the overall security posture of the organization. This role may occasionally require weekend or holiday coverage. Key Responsibilities: CrowdStrike Expertise: Hold at least one CrowdStrike certification (CCFA, CCFR, or CCFH) and apply advanced skills to detect, analyze, and respond to security threats. Splunk Proficiency: Leverage advanced knowledge of Splunk as a power user, capable of searching, threat-hunting, and building effective detection content using SPL (Search Processing Language). Incident Response: Lead and execute the full incident response lifecycle, including detection, containment, eradication, recovery, and post-incident documentation. Collaborate with the Cyber Incident Response Team (CIRT) to analyze incidents and develop remediation strategies. Network Protocols and Devices: Understand various network protocols and devices; a CCNA certification is a plus but not mandatory. On-call Support: Provide support during weekends and holidays on rare occasions as needed. Project Management (Optional): Contribute to security projects, applying prior project management experience to streamline operations and ensure successful project delivery. Qualifications: Minimum of one CrowdStrike certification (CCFA, CCFR, CCFH). Advanced expertise in Splunk with the ability to perform searches, threat hunts, and build detection rules in SPL. Strong understanding and hands-on experience with Incident Response processes and procedures. Solid understanding of various network protocols and devices (CCNA is a plus). Flexibility to occasionally work weekends and holidays if needed. Previous experience with project management is a plus. Preferred Skills: Proven ability to handle security incidents efficiently and effectively. Strong problem-solving and analytical skills. Ability to work both independently and in a team-oriented environment. Excellent communication and documentation skills. This position offers the opportunity to work in a dynamic environment, applying cutting-edge technologies and methodologies to safeguard our organization against evolving cyber threats.