Listing Description
Overview
We’re looking for a passionate and highly motivated professional to serve as a senior member of our Incident Response program. The Senior Cyber Security Analyst will use his or her experience and expert knowledge to defend our networks, systems, and data from attack. Understanding current tactics, techniques, and procedures used by adversaries you will apply that knowledge to the investigation of cyber-attacks, ensuring appropriate steps are taken to mitigate and remediate the threats. You will serve as an escalated contact working closely with others within our broader cyber and technology organizations to support our mission.
Role summary and job responsibilities
o Accountable for all aspects of the cyber security analysis process for their work, ensuring all steps required to investigate, mitigate, and remediate potential incidents are followed
o You will contribute to the development of and improvement in cyber security standard methodologies within your group, working with leadership as necessary
o Ability to think critically, breaking down complex or vague problems and stepping through them in a rational way
o Flexible in his or her thinking; able to evolve a solution when additional information or ideas are presented
o Decisions and recommendations distinguish between near term mitigation and required future investments
o Identifies when junior resources need help and provides mentoring in a positive way that promotes confidence
Business knowledge
o Can articulate cyber security risk and translate into practical solutions to technology teams
o Thorough knowledge of the cyber analysis program associated objectives
o Understanding and awareness of any potential impact actions may have on the broader business of the firm
Requirements
o Typically, 4+ years of relevant experience
o Up to date with relevant cyber security threats and counter measures
o Deep understanding of incident response processes and procedures
o Shows a commitment to quality by implementing suitable solutions
o Deep understanding of TCP/IP, OSI model, and component and systems dependencies concepts
o Familiarity with network forensics including PCAP analysis, network security, and IDS/IPS analysis
o Utilizes Cyber Threat Intelligence and Cyber Security Awareness concepts to influence work
o In-depth understanding of Windows operating systems and general knowledge of Unix, Linux, and Mac operating systems
o Knowledgeable with various security infrastructure tools such as firewalls, intrusion prevention/detection systems, proxy servers, email controls, anonymizing technology, and SIEM
o Knowledgeable in Cyber risk management frameworks, web application technologies, and network and systems forensics
o Ability to investigate and analyze malicious code (basic static/dynamic analysis)Ability to work as part of a team, show initiative and take on new tasks as assigned
o Ability to perform risk analysis and communicate that risk to others
o General understanding of AWS, Azure, and/or Google Cloud
Preferred
o Experience in a 24x7 global enterprise, preferably in the financial industry
o SANS GIAC (GSEC, GCIA, GCIH, GCFA, etc.), CISSP, CEH, Security+, or similar information security certifications
o Scripting experience, preferably Python and/or PowerShell
o Splunk knowledge
o General system administration
Job Family: Cyber Security
Track: Knowledge Management (KM)
Level: 3
Listing Details
- Citizenship: Us Citizen
- Incentives: Not Provided
- Education: Specialized Training
- Travel: Not Provided
- Telework: Optional Telecommute