Threat Analyst Internship

Proficio is an award-winning managed detection and response (MDR) services provider. We provide 24/7 security monitoring, investigation, alerting and response services to organizations in healthcare, financial services, manufacturing, retail and other industries. Proficio has been highlighted in Gartner’s Market Guide for Managed Detection and Response Services for the last three consecutive years. We have a track record of innovation. Proficio invented the concept of SOC-as-a-Service. We were the first MSSP to provide automated response services and the first in our space to provide a risk scoring dashboard.

Our typical client is a medium to large-sized organization that lacks the in-house resources to address the challenges of a rapidly changing threat landscape. The difficulty of hiring and retaining cybersecurity professionals are widely understood but our prospective clients also struggle to effectively harness technology and build hardened processes.

While Proficio has developed a unified service delivery platform designed to meet the needs of the most demanding clients, what sets us apart is the quality and passion of our people. We believe the SOC of the Future will meld the creativity of human intelligence with the power of advanced technologies like AI.

SUMMARY:

We are looking for top performers to join our exciting fast-growing company to help address the most challenging security issues in the industry. If you are a serious security professional looking to catch the next wave, we should talk. As an Intern at Proficio on the Threat Analyst team, you will learn how to help our customers by identifying security threats, thwarting hackers, and preventing data breaches. You will learn how to work with the industry’s leading SIEM technology to monitor security events, prioritize alerts, and investigate and remediate incidents.

Previous experience in a Security Operations Center (SOC) is not required, but we are looking for people who can use their knowledge of security and networking fundamentals, analytical abilities, and strong communication skills to take on one of the most challenging roles in this exploding field. This is an opportunity to learn, contribute, and grow unlike few others in the IT industry today.

REsponsibilities

• Event monitoring using a SIEM Console
• Watch active channels/dashboards and replay and interpret events
• Create annotations, reports and cases
• Investigate incidents using channels, event graphs, annotations, cases, and reports
• Recognize patterns or inconsistencies that could indicate complex cyber attacks
• Recommend improvements to service, efficiency and quality of work
• Develop and document appropriate troubleshooting techniques
• Demonstrate excellent communication and customer care skills
• Meet defined service level agreements regarding response time and customer notification

Requirements

• Undergraduate degree in a systems administration, networking, or technical field such as computer science or engineering, or expected completion within a year, or equivalent work experience
• Previous intern experience as a SOC Analyst is preferred but not required
• Experience or knowledge of ArcSight or Splunk (or other SIEM technology) is preferred but not required
• At home or school lab experience with security technologies like SIEM, firewalls, IDS/IPS, and vulnerability management:

• Recommend improvements to service, efficiency and quality of work

• Develop and document appropriate troubleshooting techniques
• Demonstrate excellent communication and customer care skills
• Meet defined service level agreements regarding response time and customer notification
• Solid understanding of computer network fundamentals including address resolution protocol, routing, network address translation, virtual private networks, and the OSI model
• Ability to read and interpret network diagrams
• Excellent communication skills
• Ability to work in a dynamic and rapidly changing environment

Benefits

• Opportunity to learn and train under tenured cybersecurity professionals
• Exposure to enterprise level business security tools and varying security environments
• Consideration for full time employment as opportunities arise