Cybersecurity Analyst
Teradata, Raleigh, NC, United States
About Us
At Teradata, we empower individuals and organizations with enhanced information access. We've developed a comprehensive cloud analytics and data platform for AI, driving innovation, harmonized data, and trusted AI, enabling our customers to improve decision-making and business performance. Top enterprises across various industries rely on Teradata to enrich customer experiences and seamlessly integrate data enterprise-wide.
Your Role
We are seeking a Cybersecurity Analyst to enhance our Security Operations Center (SOC). This is a fantastic opportunity to kickstart or advance your career in a nurturing and technologically advanced setting.
Key Responsibilities
Monitor security incidents and alerts using Microsoft Sentinel, including initial triage, classification, and escalation of potential security threats.
Investigate endpoint alerts from Microsoft Defender for Endpoint, adhering to established playbooks and procedures.
Conduct preliminary analysis and documentation of security incidents, gathering evidence, and compiling timelines for escalation to senior team members when necessary.
Execute and adhere to interactive playbooks for common incident types to guarantee a systematic and effective response.
Contribute to the optimization of existing detection rules and alerts, identifying false positives and documenting observed patterns.
Support automation endeavors by validating and testing automated playbooks and workflows under senior guidance.
Analyze security logs and telemetry from Azure cloud environments to spot unusual activities and potential threats.
Maintain detailed and accurate records of incidents, investigations, and actions taken in the ticketing system.
Help develop and maintain SOC documentation, standard operating procedures, and runbooks.
Participate in knowledge-sharing sessions and keep abreast of emerging threats, vulnerabilities, and best practices in security.
Offer assistance during out-of-hours security incidents as part of the on-call rotation.
Collaborative Environment You will work closely with senior analysts to monitor and react to security events, investigate alerts, and enhance our response and detection capabilities using Microsoft security tools. Qualifications 1-3 years of experience in a security operations, SOC, or IT security role.
Working knowledge of Microsoft Sentinel including basic navigation and alert review, along with familiarity with KQL (Kusto Query Language) for log queries.
Basic understanding of Microsoft Defender for Endpoint, encompassing alert investigation and basic threat response actions.
Foundational knowledge of Azure, including Azure AD/Entra ID and cloud security concepts.
Awareness of common attack vectors, threat actor tactics, and frameworks like MITRE ATT&CK.
Basic understanding of networking concepts, including TCP/IP, DNS, HTTP, firewalls, and packet analysis.
Strong analytical and problem-solving abilities with a keen attention to detail.
Effective written and verbal communication skills to clearly document findings.
A proactive approach and eagerness to learn and advance technical skills in a dynamic environment.
What You'll Bring Industry certifications such as CompTIA Security+, Microsoft Security Operations Analyst (SC-200), AZ-900, or SC-900.
Experience with scripting languages like PowerShell or Python for basic task automation.
Exposure to working in a SOC environment with shift-based or on-call coverage.
Familiarity with ITIL processes and ticketing systems like ServiceNow or Jira.
Understanding of compliance frameworks such as NIST, ISO 27001, or SOC 2.
Why You'll Love Working at Teradata We prioritize a people-first culture because our success hinges on our people. With a flexible work model, we empower individuals to make choices about how, when, and where they work. Our focus on well-being reflects our commitment to fostering an inclusive environment where every individual can thrive personally and professionally. Pay Rate:
$68,200.00 - $85,200.00 - $102,300.00 Hourly Compensation for the successful applicant will depend on geographic location, job-related knowledge, skills, internal equity, and experience. Employees in this role are eligible for our comprehensive benefits, which include healthcare, life and disability insurance, a 401(k) retirement savings plan, and time-off programs. Specific benefits details will be provided during the hiring process.
Investigate endpoint alerts from Microsoft Defender for Endpoint, adhering to established playbooks and procedures.
Conduct preliminary analysis and documentation of security incidents, gathering evidence, and compiling timelines for escalation to senior team members when necessary.
Execute and adhere to interactive playbooks for common incident types to guarantee a systematic and effective response.
Contribute to the optimization of existing detection rules and alerts, identifying false positives and documenting observed patterns.
Support automation endeavors by validating and testing automated playbooks and workflows under senior guidance.
Analyze security logs and telemetry from Azure cloud environments to spot unusual activities and potential threats.
Maintain detailed and accurate records of incidents, investigations, and actions taken in the ticketing system.
Help develop and maintain SOC documentation, standard operating procedures, and runbooks.
Participate in knowledge-sharing sessions and keep abreast of emerging threats, vulnerabilities, and best practices in security.
Offer assistance during out-of-hours security incidents as part of the on-call rotation.
Collaborative Environment You will work closely with senior analysts to monitor and react to security events, investigate alerts, and enhance our response and detection capabilities using Microsoft security tools. Qualifications 1-3 years of experience in a security operations, SOC, or IT security role.
Working knowledge of Microsoft Sentinel including basic navigation and alert review, along with familiarity with KQL (Kusto Query Language) for log queries.
Basic understanding of Microsoft Defender for Endpoint, encompassing alert investigation and basic threat response actions.
Foundational knowledge of Azure, including Azure AD/Entra ID and cloud security concepts.
Awareness of common attack vectors, threat actor tactics, and frameworks like MITRE ATT&CK.
Basic understanding of networking concepts, including TCP/IP, DNS, HTTP, firewalls, and packet analysis.
Strong analytical and problem-solving abilities with a keen attention to detail.
Effective written and verbal communication skills to clearly document findings.
A proactive approach and eagerness to learn and advance technical skills in a dynamic environment.
What You'll Bring Industry certifications such as CompTIA Security+, Microsoft Security Operations Analyst (SC-200), AZ-900, or SC-900.
Experience with scripting languages like PowerShell or Python for basic task automation.
Exposure to working in a SOC environment with shift-based or on-call coverage.
Familiarity with ITIL processes and ticketing systems like ServiceNow or Jira.
Understanding of compliance frameworks such as NIST, ISO 27001, or SOC 2.
Why You'll Love Working at Teradata We prioritize a people-first culture because our success hinges on our people. With a flexible work model, we empower individuals to make choices about how, when, and where they work. Our focus on well-being reflects our commitment to fostering an inclusive environment where every individual can thrive personally and professionally. Pay Rate:
$68,200.00 - $85,200.00 - $102,300.00 Hourly Compensation for the successful applicant will depend on geographic location, job-related knowledge, skills, internal equity, and experience. Employees in this role are eligible for our comprehensive benefits, which include healthcare, life and disability insurance, a 401(k) retirement savings plan, and time-off programs. Specific benefits details will be provided during the hiring process.