Join to apply for the Global Analytics Engineer role at Construction Risk Advisors
1 day ago Be among the first 25 applicants
Job Description
SRAs mission is to level up every day to protect our clients and their customers. This begins with our team members and their experience. SRA prides itself on maintaining a culture where team members have a shared sense of support and belonging, consistent with our Its Personal company value. At SRA, we prioritize transparent career pathing, varied DEI programming and community groups, competitive benefits including mental health support, and an emphasis on a sustainable, healthy, and engaging work culture. SRA has twice been named a Best Place to Work by the Philadelphia Business Journal.
Summary/Objective
We are looking for a skilled Analytics Engineer to join our CyberSOC engineering team. The ideal candidate will have hands-on experience crafting detection logic using Kusto Query Language (KQL) and a deep understanding of log source telemetry and schema structures.
Key Qualifications
* Proven ability to develop high-fidelity detection content.
* Practical experience with at least one Endpoint Detection and Response (EDR) platform.
* Proficiency with at least one Security Information and Event Management (SIEM) solution.
Essential Functions
* Provide operational support during standard business hours for internal defenders and analysts, including responding to inquiries, troubleshooting, and deploying Sentinel analytics.
* Design, develop, and modify Microsoft Sentinel analytics.
* Collaborate with EDR analytics team to create and maintain detection rules.
* Develop and maintain custom Sentinel functions.
* Troubleshoot issues related to Sentinel analytics and functions.
* Coordinate with the Content Engineering Lead on logging infrastructure.
* Manage deployment lifecycle of Sentinel analytics.
Qualifications
* Bachelor's degree in IT, Security, Computer Science, or related field.
* Proficient in Kusto Query Language (KQL).
* 1-3 years of professional experience.
* Experience with EDR platforms like CrowdStrike Falcon, SentinelOne, or Microsoft Defender for Endpoint.
Additional Information
This is a full-time role with standard hours, with potential for evening and weekend work. Willingness to travel is required. We encourage diverse applicants and provide reasonable accommodations for disabilities.
Benefits
* Employer matched pension
* Health and dental insurance
* Annual bonus
* Mental health services
* Life insurance
* Study support
* Charitable donations
Other Details
This job is active and accepting applications.
#J-18808-Ljbffr