Cyber Incident Management Analyst

About The Position

Requirements

• Bachelor's degree or four or more years of work experience.
• Four or more years of relevant work experience.
• Three or more years of security operations and/or Incident Handling experience.

Nice To Haves

• Related Certification (A+, Network+, Security+, CISSP, GCIH, GCFA, GCFE, GNFA, GREM).
• Information Assurance or Cyber Experience in the Telecommunications industry.
• Experience working in a Security Operations Center (SOC) with focus on Computer Network Defense (CND).
• Experience with dynamic and/or malware analysis.
• Experience in Cyber Intelligence or related disciplines.
• Experience with enterprise antivirus, EDR, IDS, Full Packet Capture, and Host/Network Forensics Tools.
• Knowledge of Networking (including the OSI Model, TCP/IP, DNS, HTTP, SMTP), System Administration, and Security Architecture.
• Experience executing various Incident Response Frameworks and Handling Procedures.
• Program and Scripting Experience.
• Experience with Regex.
• Strong knowledge of Operating Systems: Windows, Unix/Linux, and OSX Operating Systems.
• Experience and knowledge of cyber risks and threats related to cyber attackers.
• Ability to manage multiple priorities in a dynamic environment.

Responsibilities

• Serving as a primary point of contact during assigned on-call shifts, responding promptly to incidents, escalations, and critical alerts to minimize downtime and mitigate risks to the enterprise.
• Utilizing and adhering to defined workflow and processes driving the Incident Management and mitigation efforts.
• Owning, executing and driving all incidents to resolution using strong facilitation, organization, and time management skills.
• Partnering with Cyber Security stakeholders and coordinating remediation activities throughout the Verizon organization and its lines of business as a part of Cyber Incident Handling and After Action Remediation.
• Ability to communicate effectively with all levels of business including technical and non-technical audiences.
• Collecting and documenting information to support Incident Response activities; including but not limited to artifacts, action items, timelines, and impacted elements.
• Documenting results of the cyber threat analysis/investigation including containment, recovery, and remediation efforts.
• Leveraging various techniques and capacities to support Cyber Incident Response and non-cyber activities.
• Enhancing and advancing the defensive capabilities of Advanced Cyber Defense (ACD) and its subsequent ability to defend the Verizon Enterprise.
• Recommending solutions to optimize both technical and process/procedure aspects of the end to end incident lifecycle.
• Collaborating with Threat Intelligence, Threat Hunt, DFIR, and SOC teams to integrate relevant data into after action reviews and post-incident evaluations.
• Tracking the implementation of post-incident recommendations and ensuring timely resolution of identified gaps, risks, or weaknesses.
• Producing and maintaining detailed reports summarizing lessons learned, trends, and strategic insights for leadership
• Providing training and mentoring of junior team members.

Benefits

• medical
• dental
• vision
• short and long term disability
• basic life insurance
• supplemental life insurance
• AD&D insurance
• identity theft protection
• pet insurance
• group home & auto insurance
• matched 401(k) savings plan
• up to 8 company paid holidays per year
• up to 6 personal days per year
• paid parental leave
• adoption assistance
• tuition assistance
• premium pay such as overtime, shift differential, holiday pay, allowances
• up to 15 days of vacation per year