Incident Analyst Cover Letter

In response to your job posting for incident analyst, I am including this letter and my resume for your review.

In my previous role, I was responsible for incident response support for security events including intrusion detection, malware infections, and denial of service attacks, privileged account misuse and network breaches.

I reviewed the requirements of the job opening and I believe my candidacy is an excellent fit for this position. Some of the key requirements that I have extensive experience with include:

• Developing and maintaining knowledge of information risk management and maintaining an awareness of current developments in information security
• Carrying out specific assignments related to incident detection independently or as part of a team
• Able to prepare and present quantitative information in a professional format
• Remedy / Outage Handling / Service Assurance / SLA compliance reporting experience strongly preferred
• Intermediate “hands on” experience with PowerShell and WMI capabilities
• To provide event management, major incident coordination, and security operations ticket management
• To be part of global support team managing escalated incidents
• The role is not a front line Service Desk but is closely aligned with the global service desk and could be considered to be part of the escalated support team

I would like to submit my application for the incident analyst opening. Please accept this letter and the attached resume.

In the previous role, I was responsible for network intrusion detection expertise to support timely and effective decision making of when to declare an incident.

My experience is an excellent fit for the list of requirements in this job:

• Familiarity with C, C++, Python , Java and similar programming languages
• Operating system installation, patching and configuration
• Backup and archiving technologies
• EDiscovery tools (NUIX, Relativity, Clearwell)
• Forensic software applications
• Data processing skills in electronic disclosure environments
• Evidence handling procedures and ACPO guidelines
• Knowledge of the latest attack trends, tools and the threat landscape

I am excited to be applying for the position of incident analyst. Please accept this letter and the attached resume as my interest in this position.

In my previous role, I was responsible for intrusion detection monitoring and incident management, to include installation, configuration, operation, and system administration of the GFE intrusion detection monitoring and incident management tool suite on-site 24x7 at Scott AFB.

Please consider my experience and qualifications for this position:

• Knowledge or working experience as a Security Operations Center Analyst is an advantage
• Training or working knowledge of ITIL Event Management, Incident Management and Security Operations
• Investigations in support of criminal or civil litigation
• System testing and use case development in support of highly technical customized applications
• Strong knowledge of tools used for network security (DLP, NIPS, HIPS, AV, Firewalls)
• Solid experience working with Internet and network technologies
• Manages many levels during an incident call including Manager, Director, and VP
• Experience with scripting in Python, Bash, Powershell

I submit this application to express my sincere interest in the incident analyst position.

In my previous role, I was responsible for tier 2 analysis of Intrusion Detection Systems (IDS) to identify security issues for remediation.

I reviewed the requirements of the job opening and I believe my candidacy is an excellent fit for this position. Some of the key requirements that I have extensive experience with include:

• Requires moderate knowledge of Government payments industry and technology
• Requires in-depth knowledge and expierence within incident response to operate independely with limited guidance and oversight
• Understanding of network and system intrusion and detection methods
• Demonstrable experience performing incident response and IT forensic investigations
• Top Secret – Sensitive Compartmented Information (DIA Adjudicated or capable of reciprocal acceptance by DIA) clearance
• The Incident Manager will help coordinate resources and activities during service interruptions affecting customers through restoration of service
• Collection and management of threat intelligenc
• Network skills, including TCP/IP-based network communications

Please consider me for the incident analyst opportunity. I am including my resume that lists my qualifications and experience.

In the previous role, I was responsible for daily updates to Defensive Cyber Operations staff on intrusion detection operation and trends of events causing incidents.

Please consider my qualifications and experience:

• Knowledge of common web and system security vulnerabilities and remediation techniques (OWASP top-10)
• Knowledge of common threat hunting tools and technologies
• Experience monitoring network traffic
• Obtain and maintain Security+ or higher certification
• Technical understanding of OS technologies (Windows, virtualization, cloud, database, networks, etc)
• Strong experience managing IT-related incidents, changes and problems
• Knowledge of host and network log sources to to investigation and IR methodology in investigations
• Knowledge of networking, malware analysis, intrusion analysis, infection vector identification, and forensics