MCPc is a global data protection company that improves the security and financial well-being of our clients.
We protect data, manage the complexity and sustainability of technology, empower employee performance, and ultimately reduce business risk.
Our Chain-of-Custody Security Solutions (SM) Platform provides holistic end-to-end lifecycle management to protect data on the most vulnerable cyber-attack surfaces every smartphone, tablet, laptop, desktop, and IoT device our clients use to do business everyday.
With headquarters in Cleveland, OH, MCPc has a global footprint to do business in 80 countries. 2019 will see new operations opening in Mississauga, Canada, just southwest of Toronto, and in Tilburg, Netherlands to service Europe. We serve our clients through five integrated business units: Secure Technology Logistics, Managed Security Solutions, Secure Technology Asset Disposition, IT Asset Management, and IT Talent Solutions.
MCPc is proud to be an equal opportunity employer. We are focused on recruiting, training, and retaining top talent at every level in our organization.
The Cyber Security Analyst is responsible for working alongside the MCPc security team to identify, analyze and block potential threats and detect IT security incidents across the enterprise along with proactive service monitoring, patching, antivirus and backups. Follows detailed operational processes and procedures to appropriately analyze, escalate, and assist in remediation of critical information security incidents. The position operates on a rotating schedule in support of operations 24 hours a day, 7 days a week.
Triage incoming tickets to the Security Operations Center
Monitor, identify, report and perform risk analysis of threats and vulnerabilities within customers environment
Interpret and analyze potential threats, then translate the severity
Assist Security Engineers with initial triage and resolution of critical issues
Carries out and evaluates investigative work regarding potential threats and actively respond to cyber-attacks
Event analysis leveraging SIEM tools
Log parsing and analysis skill set
Malware operation and indicators
Assist in implementing security awareness strategies
Monitor the remote monitoring and management system alerts and notifications, and respond accordingly through service tickets for monitoring, patching, antivirus and backups.
Effectively communicate and work with end users to remediate issues with monitoring, patching, antivirus alerts and backups
Communication with customers as required: changes or agreed outages
Understand and research vendor patch release schedules and models and thru trusted resources, for timely vulnerability disclosures.
Provide monthly patching reports to customers remediating issues as they arise, escalating to the Analyst II as necessary
Monitor antivirus alerts, remediate communicate with customers both verbally and via service ticket effectively
Responsible for resolving technical issues resulting from monitoring alerts (disk space, firmware updates, hardware problems, for example).
Document configuration items in IT Glue and verify validity.
Assist with report generation out of Solarwinds/Nable/ConnectWise.
Assist with client projects as appropriate, (Bitlocker, active directory clean up, security permissions, folders for example.)
Extremely detail oriented
Excellent work ethic and professionalism
Outstanding verbal and written communications
Must enjoy a demanding and fast-paced environment
Organizational skills with the ability to handle multiple task
Must be a team player with excellent communication skills and possess the ability to manage assignments independently.
Understanding of IT security needs and procedures
Required: Bachelor's degree in computer science, management information systems or related field plus 2 years of work experience
OR Associates degree plus 3 years of work experience
OR 4 years of work experience
Information security related experience in areas such as security operations, incident analysis, incident handling and vulnerability management or testing, system patching, log analysis, intrusion detection or firewall administration
Experience in network operations or engineering
Networking Certifications (CCNA, etc.)