IT Support Analyst 2nd/3rd Line - Incident Response

penetration testing, powershell, python, hacking, whitehat, blackhat, SIEM
Full Time
$100,000 - $150,000
Work from home not available Travel not required

Job Description

The Role: As a Incident Response Analyst, you will be part of the Global Technology, Cyber Security team that develops and oversees the company's security program, ensuring the company is protected from existing and emerging threats. Working with the various teams, the Incident Response Analyst will follow appropriate procedures that are in place to detect and respond decisively to security incidents, assist with incident response-related activities within the US and providing support globally.

 

Primary Responsibilities:

Coordinate and triage response to cyber security events and conduct forensic analysis

Understand the threat landscape through collaboration with the Threat Intelligence team and other stakeholders

Work with a team of threat hunters to proactively identify security events

Support incident response related activities

Create and Playbooks and SOPs

Work closely with the SOC in investigating incidents and delivering containment, remediation and root cause analysis.

Deliver actionable incident metrics to management

Follow the end-to-end incident response lifecycle

Build an understanding of key S&P technology, systems, and business practices

 

Required Qualifications:

Working knowledge of common attack vectors and penetration techniques

Excellent communication skills to effectively present to different business and technical audiences

Demonstrated experience handling security events in critical environments

Experience analyzing system and application logs to investigate security and operational issues

Demonstrated experience utilizing an SIEM (Splunk, LogRhythm, SolarWinds) in investigating security issues, creating alerts, reports and threat hunting.

Strong knowledge of current enterprise detection and monitoring technologies and processes

3+ years of information security experience and prior experience focused on incident response activities

Organization skills with the ability to multi-task and identify priorities, work with cross-functional global teams, and execute on schedule

Passion for security

Excellent report writing and presentation skills

Comfortable working in a fast-paced, exciting environment

Advanced knowledge of network protocols (TCP, IP, HTTP) and operating systems

Preferred Qualifications:

Degree in Computer Engineering, Computer Science, or Information Systems Management preferred

Experience in the financial services industry preferred

Familiarity with threat hunting techniques preferred

Windows and Linux administration

 

Dice Id : EFC
Position Id : 6416846
Originally Posted : 2 weeks ago
Have a Job? Post it

Similar Positions

Cyber Security Operations Analyst
  • Digitalware
  • New York, NY
Senior SOC Analyst
  • ConsultUSA
  • New York, NY
Information Security Analyst
  • Abacus Group
  • New York, NY
Cyber Security Engineer
  • Gotham Technology
  • New York, NY
Cyber Security Engieneer
  • CYBERNETIC
  • New York, NY
INFORMATION SECURITY MANAGER
  • GAVS Technologies
  • Glen Cove, NY
* IT ARCHITECT - INFORMATION SECURITY - STRATEGY/ARCHITECTURE - 1103
  • Montefiore Information Technology
  • Yonkers, NY
Lead IT Security Analyst
  • Robert Half
  • Iselin, NJ
Security Risk Analyst
  • Recruit Professional Services
  • Rockleigh, NJ
SECURITY ANALYST
  • Maxus Technology USA LLC
  • Newark, NJ
Senior Security Analyst
  • DBI Staffing
  • New York, NY
IT Security Auditor / Security Administration
  • Samsung SDS America Inc
  • Ridgefield Park, NJ
Cyber Security Engineer
  • Pelham Berkeley Search
  • New York, NY
Cyber Security SME
  • Donnelly & Moore Corporation
  • Uniondale, NY