Cyber Defense Analyst

Who We Are

At Kyndryl, we design, build, manage and modernize the mission-critical technology systems that the world depends on every day. So why work at Kyndryl? We are always moving forward – always pushing ourselves to go further in our efforts to build a more equitable, inclusive world for our employees, our customers and our communities.

The Role

Are you passionate about protecting companies from cyber threats? Do you want to be part of a team that safeguards the digital assets of a cutting-edge organization? Look no further – Kyndryl is seeking a Cyber Defense Analyst to join our team of talented Security Intelligence Analysts.

The Kyndryl CSIRT (Cybersecurity Incident Response Team) is looking for a Cyber Defense Analyst to join an advanced team that drives proactive identification of threats within the organization, provides rapid response, and monitors user activity, network events, and signals from security tools to identify events that merit attention, prioritization, and investigation.

Primary Responsibilities:

• Analyze network and host activity associated with both successful and unsuccessful intrusions by advanced attackers.
• Contribute to enterprise incident response efforts.
• Leverage understanding of tactics, techniques, and procedures associated with advanced threats to create and add custom signatures that mitigate highly dynamic threats to the enterprise.
• Employ advanced forensic tools and techniques for attack reconstruction and intelligence gathering.
• Proactively research emerging cyber threats. Apply analytical understanding of attacker methodologies and tactics, system vulnerabilities, and key indicators of attacks and exploits.
• Contribute to threat intelligence reports and briefings that provide situational awareness of cyber threats impacting the company's global network infrastructure, to every level of the organization.
• Participate in threat hunt operations using known adversary tactics, techniques, and procedures, as well as indicators of attack, in order to detect advanced threats to the enterprise.
• Collaborate using information and knowledge sharing networks and professional relationships to achieve common goals.
• Provide on-call support for incident response efforts outside of core hours as needed.
  
  

This is a unique opportunity to work with cutting-edge technology, be part of a dynamic team, and make a significant impact in the world of cybersecurity. If you're up for the challenge, apply now to join the Kyndryl cybersecurity team!

Kyndryl currently does not require employees to be fully vaccinated against COVID-19, however, if you are hired to work at a client, customer, or partner location, you may be required to show proof of vaccination to align with their respective COVID-19 vaccination policies. Those who believe they are eligible may apply for a medical or religious accommodation prior to the start of employment.

Who You Are

Required Skills and Experience:

• 4+ years of experience in a Cybersecurity field, or 2+ years of experience along with a bachelor’s degree in a related field.
• Expertise in network, host-based intrusion analysis, digital forensics, or malware analysis.
• Familiarity in utilizing EDR tools for detection and response (CrowdStrike, Defender, XDR, etc.).
• Experience in creating custom behavior or network-based detections to detect malicious activity.
• Experience performing "deep dive" analysis and correlation of log data from multiple sources (PCAP, forensic artifacts, etc.).
• Ability to leverage actionable threat intelligence in effort to increase security posture within enterprise environments.
• Proficient with contributing to and/or leading incident response activities.
• Understanding of Operating Systems and Network Protocols.
• Familiarity with Microsoft Windows administrative tools, and the Unix/Linux command line.
• Familiarity with Security Operations Center experience including experience with security automation platforms (XSOAR, Tines, etc.).
• Proficiency with XSIAM, Splunk, or other SIEM-type platforms.
• Understanding of behavioral-based threat models, including ATT&CK, Cyber Kill Chain, Diamond Model, etc.
• Excellent technical writing and presentation skills.
  
  

Preferred Skills and Experience:

• Valid and current certification or equivalent experience in one of the following: CISSP / CompTIA Security+ / Certified Cloud Security Professional / GIAC Security Essentials
• An understanding of advanced cyber threats targeting enterprises, along with the tools, tactics, and procedures used by those threats.
• Experience applying threat and data modeling, advanced data correlation, and statistical analysis to develop alerts, notable events, investigative dashboards, and metrics-driven reports.
• Familiarity with scripting (e.g., Python, PowerShell) and Jupyter Notebooks for basic automation of security analysis tasks
• Experience as a Threat Researcher and/or Intelligence Analyst.
  
  

The compensation range for the position in the U.S. is - 88,680 to $168,480 based on a full-time schedule.

Your actual compensation may vary depending on your geography, job-related skills and experience. For part time roles, the compensation will be adjusted appropriately. The pay or salary range will not be below any applicable state, city or local minimum wage requirement.

There is a different applicable compensation range for the following work locations:

California: $97,560 to $202,200

Colorado: $88,680 to $168,480

New York City: $106,440 to $202,200

Washington: $97,560 to $185,280

Washington DC: $97,560 to $185,280

This position will be eligible for Kyndryl’s discretionary annual bonus program, based on performance and subject to the terms of Kyndryl’s applicable plans. You may also receive a comprehensive benefits package which includes medical and dental coverage, disability, retirement benefits, paid leave, and paid time off. Note: If this is a sales commission eligible role, you will be eligible to participate in a sales commission plan in lieu of the annual discretionary bonus program.

Applications will be accepted on a rolling basis.

All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or status as a protected veteran.

Know Your Rights: Workplace Discrimination is Illegal

Pay Transparency Nondiscrimination Provision

Being You

Diversity is a whole lot more than what we look like or where we come from, it’s how we think and who we are. We welcome people of all cultures, backgrounds, and experiences. But we’re not doing it single-handily: Our Kyndryl Inclusion Networks are only one of many ways we create a workplace where all Kyndryls can find and provide support and advice. This dedication to welcoming everyone into our company means that Kyndryl gives you – and everyone next to you – the ability to bring your whole self to work, individually and collectively, and support the activation of our equitable culture. That’s the Kyndryl Way.

What You Can Expect

With state-of-the-art resources and Fortune 100 clients, every day is an opportunity to innovate, build new capabilities, new relationships, new processes, and new value. Kyndryl cares about your well-being and prides itself on offering benefits that give you choice, reflect the diversity of our employees and support you and your family through the moments that matter – wherever you are in your life journey. Our employee learning programs give you access to the best learning in the industry to receive certifications, including Microsoft, Google, Amazon, Skillsoft, and many more. Through our company-wide volunteering and giving platform, you can donate, start fundraisers, volunteer, and search over 2 million non-profit organizations. At Kyndryl, we invest heavily in you, we want you to succeed so that together, we will all succeed.

Get Referred!

If you know someone that works at Kyndryl, when asked ‘How Did You Hear About Us’ during the application process, select ‘Employee Referral’ and enter your contact's Kyndryl email address.