Go Enterprise, contact us anytime: email, phone, or chat

  • Incident Response Engineer

    Verizon Media (aka Paranoids)

    We are the FIRE Team (Forensics, Incident Response and Engineering) within The Paranoids, similar in purpose but not your typical Incident Response team. We identify intrusions and secure hosts and networks from security incidents. We hunt, monitor and boot adversaries from our environment using both standard sometimes experimental techniques. The folks on our team handle anything that comes our way whether that be the latest 0-day, consulting on best-practices or even developing new detections. Our team excels in handling incidents by utilizing our prior experience and knowledge along with the raw talent to solve issues on the fly. Verizon Media has experts in every technology to lean on when we need support, but our team takes the lead for all incidents for all Verizon Media properties and brands. We’re seeking hands-on security leaders who work independently and in a team based setting to accomplish The Paranoids overall goals; securing the company and protecting the user!

Description

• Minimum of 5+ years of combined experience in incident response, forensics, penetration testing, SIEM monitoring, network analysis or other SOC-like operations

• Masters in Computer Science or Cyber Security; or equivalent experience

• Training in Incident Handling: GCIH or GCIA; or similar experience

• Effective communication skills including the ability to influence people and groups

• Ability to work within an on-call shift rotation

• Strong analytical skills

• Experience working at Internet scale

• Programming or scripting experience

• Training in attacker techniques: OSCP, GWAPT, GPEN, or similar experience

• Threat Modeling strategies (such as the Diamond Model)

• IOC management tools: CRITs, MISP, or similar experience

• EnCase, FTK, Remnux, Volatility, GRR, Rekall, or similar

• Full packet capture and analysis, preferably using Moloch

• EDR solutions (CrowdStrike, Mandiant/Fireeye, etc.)


Responsibilities

  • Detect and monitor adversaries
  • Digital Forensics & Incident Response (DFIR)
  • Develop cutting edge detection techniques and processes
  • Provide remediation guidance
  • Build, improve and test our detection capabilities
  • Identify people, process, and technology opportunities
  • Develop, propose and implement solutions
  • Provide feedback for longer term projects both internal and external to Paranoids
  • Work with other Paranoids’ teams to enhance our overall security posture
  • Guide the collection of additional data to support our hunting and analysis
  • Organize and participate in regular post-mortems to educate Paranoids and other business units
  • Search our massive datasets for indicators of compromised resources

Details

  • Travel No travel
  • Incentives Both
  • Clearance & Citizenship No requirements
  • Remote Work Remote occasional
  • Education No requirements
  • Salary Range 150-170K

Join NinjaJobs!

Registered users get the benefit of full listing views, searches, posting options and more!