Security Analyst - (MDR)



Tel Aviv-Yafo, Israel
Posted on Wednesday, November 1, 2023

About At-Bay

At-Bay combines world-class technology with industry-leading insurance to help clients meet risk head-on. Partnering with brokers and business owners alike, we provide modern insurance products and active risk monitoring services for companies of every size and in every industry. Our team boasts many backgrounds and skills, from analysts and developers to designers and underwriters, and everything in between — all working together to redefine what it means to be an insurance company.

We’re proud to be a diverse company and to have expertise from multiple industries driving our culture. At-Bay is expanding rapidly, and as we grow, we’re prioritizing inclusive hiring practices and supportive team environments. We’re committed to building a company culture where people of all identities and backgrounds are empowered to thrive, develop their career, and bring their full self to work.

At-Bay is a globally distributed company with hubs in Atlanta, New York City, San Francisco, and Tel Aviv. To date, we have raised $292 million in funding from Acrew Capital, Glilot Capital, Icon Ventures, ION Crossover Partners, Khosla Ventures, Lightspeed Venture Partners, M12, entrepreneur Shlomo Kramer, and Qumra Capital.

What we are looking for

Security Analysts provide first-line security monitoring services to At-Bay’s Managed Detection & Response customers with specific

responsibilities including:

  • Operation and tuning of security monitoring tools including Endpoint Detection & Response (EDR), network monitoring, email security, Data Loss Prevention (DLP), Security Information and Event Management (SIEM), security automation tools, and others as needed
  • Identification and analysis of anomalous activity in customer technology environments
  • Triage of event data to identity potential indicators of compromise
  • Escalation of potentially malicious activity to engage incident responders where necessary
  • Participation in incident investigation, containment, remediation, and recovery activities where necessary
  • Developing and maintaining customer relationships to facilitate delivery of MDR services
  • Developing and delivering reports on identified activity to customer stakeholders as needed

Key skills

  • Previous EDR, MDR, XDR, security monitoring, or incident response experience
  • Strong oral and written communications skills
  • Previous hands-on experience performing security operations including several of the following:
    • Security monitoring using a variety of endpoint and network tools
    • Deployment, tuning, and operation of security tools from vendors such as CrowdStrike, SentinelOne, and others
    • Deployment, tuning, and operation of SIEM or other tools used to aggregate and analyze security-relevant data
    • Triage and analysis of potential indicators of compromise
    • Performing rapid response to contain and/or remediate potentially malicious activity
    • Development and analysis of cyber threat intelligence
    • Participation in investigations involving digital evidence
    • Intrusion detection / cyber threat hunting
    • Malware analysis
  • Previous hands-on experience working in information technology operations (e.g., Network Operations Center, Security Operations Center, Incident Response Team, etc.)

Minimum requirements

  • Bachelor’s degree or equivalent
  • Minimum of 2 years of experience in cybersecurity operations, incident response, or another security discipline
  • Willingness to travel as needed to perform job functions

Preferred requirements

  • Significant undergraduate or graduate coursework in computer science, computer engineering, information systems, or cybersecurity
  • Preferred candidates will have a mix of cybersecurity experience including either security operations or security engineering / architecture
  • Knowledge of cloud environments including knowledge of cloud security products and services offered by major cloud service providers (e.g., AWS, Azure, Google)
  • One or more industry cybersecurity certifications (e.g., GCIH, Security+, CISSP, etc.)

What you'll get

  • A competitive salary, and equity in a super fast growing company, taking over commercial insurance
  • A strong emphasis on work-life balance
  • Beautiful offices in the heart of Tel Aviv, near the train station and main bus stops
  • Passionate, smart, and fun people to work with
  • You will never lack a challenge, we are a unique blend of a fast growing tech startup, an international firm, and an insurance company

Work location

  • Tel Aviv.