Blackpoint Cyber is hiring a MDR Analyst Skillbridge Intern - Swing Shift (4pm - 12am ET)

Blackpoint Cyber is seeking an MDR Analyst Skillbridge Intern for active military members nearing separation. This internship places you in a Swing Shift (4pm - 12am ET) Security Operations Center (SOC) role, focusing on cybersecurity threat hunting and analysis. You'll be integral to a team that values high-quality execution, ownership, and collaboration.

What You'll Do

• Analyze and evaluate anomalous network and system events in a 24x7x365 SOC via lead-less threat hunting.
• Collaborate with MDR Analysts to research emerging cyber security threats and serve as an escalation point for advanced intrusion analysis.
• Develop incident analysis reports and work across business units and customers to bring issues to a close.
• Help design and build operational processes and procedures to improve overall SOC efficiency.
• Provide actionable threat and vulnerability analysis based on security events for independent customer environments.
• Build test lab environments to research emerging techniques and contribute to internal and external knowledge development of threat operations.
• Review sandbox technologies for additional IOCs uncovered during analysis.

What We're Looking For

• Three (3+) years of experience in an information security role; progressive training or certification may substitute for one (1) year.
• Experience working in a Security Operations Center (SOC).
• One (1+) years of experience triaging endpoint events from EDR, NGAV, and supporting the Incident Response (IR) process.
• Deep knowledge of assessing threat indicators in a Windows Environment (e.g., malware, forensic artifacts, root compromise).
• Robust understanding of at least two of the following: Windows, Linux, or OSX.
• Familiarity with the ELK stack (dashboards, Logstash config, searching).
• Familiarity with AWS services (EC2, S3, IAM) and Azure/M365.
• Experience developing, refining, and performing lead-less threat hunting analysis to uncover new or potential incidents.
• Excellent problem solving, critical thinking, and analytical skills with the ability to deconstruct issues.
• Excellent written and verbal communication skills to present technical findings to both technical and non-technical audiences.

Nice to Have

• Bachelor’s Degree in Computer Science or a related technical discipline.
• Network/System Administration and/or Engineering experience.
• Deep forensic knowledge of Windows, Mac OS, and/or Linux.
• Experience in Digital Forensics and Incident Response.
• Malware Analysis (behavioral and/or static analysis with tools like IDA, Cuckoo Sandbox).
• Pentesting or Red/Blue Team experience.
• Capture The Flag (CTF) development experience.

Technical Stack

• EDR, NGAV
• Operating Systems: Windows, Linux, OSX
• ELK stack
• Scripting: Powershell, Python, Go
• Cloud: AWS EC2, AWS S3, AWS IAM, Azure, M365

Team & Environment

You will join our Security Operations Center (SOC), an energetic and collaborative team focused on high-performance, growth, and overcoming challenges.

Benefits & Compensation

• Competitive Health, Vision, Dental, and Life Insurance plans.
• Robust 401k plan.
• Discretionary Time Off.

Blackpoint Cyber welcomes and encourages applications from qualified individuals of all races, colors, religions, sex, sexual orientation, gender identity or expression, national origin, age, marital status, or any other legally protected status. We are committed to equality of opportunity in all aspects of employment.