Sr Cyber Security Operations Analyst - Hybrid Houston or Dallas TX

AECOM is seeking a Senior Security Analyst for our Global Cyber Security Operations Center (CSOC).

This position offers flexibility for hybrid work schedules to include both inoffice presence and virtual/telecommute to be based from either Houston or Dallas TX.

The position will support operations in the Europe and India regions thus requiring working hours to correspond with European time zones.

This role will be an integral part of a high performing team providing triage and response services as part of a follow the sun model. The successful candidate will be responsible for partnering with members of IT in various global regions for incident containment and remediation.

Periodically the analyst will also be expected to liaise with the organizations IT and security leadership in support of security OR business project(s) with security implications. These projects typically target expansion or improvements to CSOC capabilities or new AECOM business development.

The ideal candidate for this role is an experienced professional with a broad level of experience in multiple areas of IT and a strong emphasis on Cyber Security. This includes awareness of current security risks threats and targeted attack methods techniques and tactics. In addition the candidate should possess strong analytical skills and have an inherent passion for seeking knowledge sharing knowledge and continuous process improvement.

Key Responsibilities:

• Monitoring triaging and investigating Security Alerts to identify Security Incidents
• Responding to identified Security Incidents determining scope and root cause and documenting the response in accordance with the relevant policies and procedures.
• Producing written reports to management after large scale incidents.
• Providing recommendations postincident to mitigate any failed security controls.
• Providing feedback to on false positive alerts and suggesting appropriate tuning to stop any reoccurrence.
• Accepting ongoing incidents handed off from the previous shift and communicating the status of new and ongoing incidents to be handed off to the following shift.
• Assisting in the management and maintenance of playbooks and runbooks both manual and automated; making recommendations for improvements where appropriate.
• Assisting in the development of operational metrics and dashboard reporting.
• Performing threat & malware analysis and research.
• Mentoring and knowledge sharing with local and global CSOC team members.
• Collaborating with crossfunctional global teams to develop and implement security policies and procedures.
• Collaborating with other IT departments to ensure that security tools and solutions are fully integrated across the environment.
• Staying up to date with emerging security trends and technologies particularly in Incident Response.

Qualifications :

Minimum Requirements:

• BA/BS plus at least 6 years of relevant experience including in Information Security with a focus on Incident Response Security Engineering and/or Intrusion Detection or demonstrated equivalency of experience and/or education
• Proficient understanding of incident response automation strategies with demonstrated ability to implement them
• Proficient understanding of threat modeling operational threat intelligence and common attack vectors
• Indepth technical knowledge of Windows Operating Systems
• Excellent oral/written communication skills (in English).
• Must be able to work Europe hours
• Must be able to work one oncall weekend approximately every 68 weeks.

Preferred Qualifications:

• Bachelor degree in Cyber Security Computer Science or similar
• Experience with disk and memory forensic tools
• Experience triaging malware
• Exceptional analytical and investigative skills with handson experience with demonstrated ability to analyze endpoint network and application logs
• Proficient in one or more programming/scripting languages
• Experience working with a global company and team.
• Ability to pass a thorough background check.
• Relevant certifications such as CISSP CISM CEH CompTIA GIAC or similar.
• Strong analytical and problemsolving skills
• Able to work well on a virtual team without close Supervision.
• Experience with builtin OS shell commands and 3rd party command line tools.
• Familiarity with general IT security best practices and controls.
• Strong Understanding of lowlevel concepts including operating systems Active Directory windows and Linux server environments alongside computer networking.
• Experience with cloud security solutions (AWS Azure Google Cloud).

Additional Information :

• Relocation assistance is not available for this position.
• Sponsorship for US work authorization is not available for this position now or in the future

About AECOM

AECOM is proud to offer comprehensive benefits to meet the diverse needs of our employees. Depending on your employment status AECOM benefits may include medical dental vision life AD&D disability benefits paid time off leaves of absences voluntary benefits perks wellbeing resources employee assistance program business travel insurance service recognition awards retirement savings plan and employee stock purchase plan.

AECOM is the worlds trusted infrastructure consulting firm delivering professional services throughout the project lifecycle from advisory planning design and engineering to program and construction management. On projects spanning transportation buildings water new energy and the environment our public and privatesector clients trust us to solve their most complex challenges. Our teams are driven by a common purpose to deliver a better world through our unrivaled technical and digital expertise a culture of equity diversity and inclusion and a commitment to environmental social and governance priorities. AECOM is a Fortune 500 firm and its Professional Services business had revenue of $14.4 billion in fiscal year 2023. See how we are delivering sustainable legacies for generations to come at aecom.com and @AECOM.

Freedom to Grow in a World of Opportunity 

You will have the flexibility you need to do your best work with hybrid work options. Whether youre working from an AECOM office remote location or at a client site you will be working in a dynamic environment where your integrity entrepreneurial spirit and pioneering mindset are championed.

You will help us foster a safe and respectful workplace where we invite everyone to bring their whole selves to work using their unique talents backgrounds and expertise to create transformational outcomes for our clients.

AECOM provides a wide array of compensation benefits and wellbeing programs to meet the diverse needs of our employees and their families. Were the worlds trusted global infrastructure firm and were in this together your growth and success are ours too.

Join us and youll get all the benefits of being a part of a global publicly traded firm access to industryleading technology and thinking and transformational work with big impact and work flexibility. As an Equal Opportunity Employer we believe in each persons potential and well help you reach yours.

All your information will be kept confidential according to EEO guidelines.

Remote Work :

No

Employment Type :

Fulltime