Security Engineer III-
Security Engineer III-
Posted on :
20-10-2022
Employer Active
The job posting is outdated and position may be filled
Job Alert
You will be updated with latest job alerts via emailValid email field required
Send jobs
Share
Send me jobs like this
Job Alert
You will be updated with latest job alerts via emailValid email field required
Send jobs
Job Description
Description:
Job Description:
As a member of Cyber Security Incident Response Team (CSIRT), the Incident Analyst will coordinate the preliminary response activities for cyber security incidents across the Global company
environment. The successful candidate will focus on preliminary identification and analysis of potential cyber security incidents. The successful candidate will perform triage functions such as email review, log analysis, analysis of network traffic and endpoint systems, enrich data, and will be responsible for escalating and assigning the incidents to level two incident handlers. The candidate will join a team of incident analysts and incident handlers and will have an opportunity to participate in a number of global cyber security initiatives.
As a member of Cyber Security Incident Response Team (CSIRT), the Incident Analyst will coordinate the preliminary response activities for cyber security incidents across the Global company
environment. The successful candidate will focus on preliminary identification and analysis of potential cyber security incidents. The successful candidate will perform triage functions such as email review, log analysis, analysis of network traffic and endpoint systems, enrich data, and will be responsible for escalating and assigning the incidents to level two incident handlers. The candidate will join a team of incident analysts and incident handlers and will have an opportunity to participate in a number of global cyber security initiatives.
- Candidates should have a basic understanding of incident response processes, network investigative techniques, and cyber security trends and issues along with SIEM and SOAR technologies and uses.
- This position requires that the candidate be a US Citizen. The candidate should be able to travel domestically in support of the investigative mission.
- This position requires the ability to work a shift schedule and support coverage efforts on a 24x7x365 basis which includes work on holidays, nights, & weekends.
1. Candidate must be available for a fixed 24/7/365 shift of 8am-3pm EST.
2. Candidate must be vaccinated, willing to submit proof of vaccination and willing to return to
work a minimum of 3 days per week.
The responsibilities include:
- Understand CSIRT functions and participates in the triage of cyber security events.
- Receive and analyze alerts from various sources within the enterprise and determine possible causes of such alerts.
- Triage logs from various security controls, including, but not limited to, firewall, proxy, host intrusion prevention systems, endpoint security, application, and system logs, to identify possible threats to network security.
- Enrich security event data to streamline the incident response process using SIEM and other correlation technologies.
- Perform incident triage, documentation, and escalation of appropriate incidents to cyber security incident handlers.
- Maintain proper documentation and creation of reports.
Candidate requirements:
- Minimum 5-7 years' hands-on experience working in incident response and/or other IT related fields tied to networking and enterprise information system environments.
- Bachelor's degree in a technology field preferred.
- Must cover a fixed 24/7/365 shift (Day, Mid-day, or Night)
- Interest in the cyber security field including specific focus on the following domains: enterprise security defense, network and application penetration testing, and incident response.
- Basic knowledge of network protocols, enterprise architecture, and common network logging functions.
- Good written and verbal communications skills a must.
- Ability to prioritize assignments and efforts in a complex work environment.
- Self-motivated and able to work in an independent manner.
- Must be detail oriented and willing to learn.
Industry certifications such as CEH, CISA, Security + are desirable.
Employment Type
Full Time
Key Skills
Report This Job
Disclaimer: Drjobpro.com is only a platform that connects job seekers and employers. Applicants are advised to conduct their own independent research into the credentials of the prospective employer.We always make certain that our clients do not endorse any request for money payments, thus we advise against sharing any personal or bank-related information with any third party. If you suspect fraud or malpractice, please contact us via contact us page.
