Cybersecurity CSIRT Analyst

TargetBrooklyn Park, NC
11hHybrid
Match Resume

About The Position

As a Cybersecurity Analyst, you’ll take the lead as you detect and assess cyber security events and incidents across the Target environment. In this role, you will collaborate and utilize problem solving skills as you work among a team of skilled analysts to address complex or difficult problems within a 24x7 Cyber Fusion Center (CFC) environment. You will implement new processes and procedures as identified by the CSIRT and the CFC Leadership to ensure continuous improvements to monitor, detect and mitigation capabilities. You will use your expertise to monitor SIEM and logging environments for security events and alerts to potential (or active) threats, intrusions, and/or compromises. You will work to understand the global threat landscape by working with Target Cyber Threat Intel team to maintain awareness. You will assist with triaging service requests from customers and internal teams and will escalate cyber security events according to Target’s Cyber Security Incident Response Plan. Additionally, you will assist with containment of threats and remediation of environment during or after an incident. You’ll act as a participant during Cyber Hunt activities at the direction of one or more Target Incident Commanders. You will leverage your reporting expertise and document event analysis and will write comprehensive reports of incident investigations. Core responsibilities of this job are described within this job description. Job duties may change at any time due to business needs. Note: This is a shift position on Shift 4 within CSIRT. The working hours for this role are Wednesday through Saturday, 12:30pm - 10:30pm CT. If you are applying for this role you acknowledge and accept the days and times of this role.

Requirements

  • Four-year degree or equivalent experience
  • 2+ years of experience in a Security Operations Centers or Cyber Security Incident Response Teams in lieu of education requirement
  • Security certification (e.g. Security+, GCIA, GCIH, CISSP)
  • Experience managing cases with enterprise SOAR, SIEM and/or Incident Management systems
  • Experience supporting network and host investigations
  • Ability to demonstrate analytical expertise, close attention to detail, excellent critical thinking, logic, and adaptive learning
  • Excellent written and oral communication skills
  • Thorough understanding of fundamental security and network concepts (Operating systems, intrusion/detection, TCP/IP, ports, etc.)
  • Willing to work in a team-oriented environment

Nice To Haves

  • Experience with host and network based security tools preferred
  • Experience with network monitoring in a SOC environment preferred

Responsibilities

  • Detect and assess cyber security events and incidents across the Target environment
  • Collaborate and utilize problem solving skills as you work among a team of skilled analysts to address complex or difficult problems within a 24x7 Cyber Fusion Center (CFC) environment
  • Implement new processes and procedures as identified by the CSIRT and the CFC Leadership to ensure continuous improvements to monitor, detect and mitigation capabilities
  • Monitor SIEM and logging environments for security events and alerts to potential (or active) threats, intrusions, and/or compromises
  • Work to understand the global threat landscape by working with Target Cyber Threat Intel team to maintain awareness
  • Assist with triaging service requests from customers and internal teams and will escalate cyber security events according to Target’s Cyber Security Incident Response Plan
  • Assist with containment of threats and remediation of environment during or after an incident
  • Act as a participant during Cyber Hunt activities at the direction of one or more Target Incident Commanders
  • Leverage your reporting expertise and document event analysis and will write comprehensive reports of incident investigations

Benefits

  • comprehensive health benefits and programs, which may include medical, vision, dental, life insurance and more
  • 401(k)
  • employee discount
  • short term disability
  • long term disability
  • paid sick leave
  • paid national holidays
  • paid vacation

Stand Out From the Crowd

Upload your resume and get instant feedback on how well it matches this job.

Upload and Match Resume

What This Job Offers

Job Type

Full-time

Career Level

Mid Level

Job Search Resources

Similar Cybersecurity CSIRT Analyst job opportunities

Cybersecurity CSIRT Analyst
Target
Target • Brooklyn Park, MN2d • $69,800 - $125,700 • Hybrid
Cybersecurity Analyst
Southwest Airlines
Southwest Airlines • Dallas, TX3d • Remote
Cybersecurity Analyst
Amentum
Amentum • Norfolk, VA3d • $60,000 - $90,000 • Onsite
Cybersecurity Analyst
Greenshades Software
Greenshades Software2d • Remote
Cybersecurity Analyst
Amentum
Amentum • Norfolk, VA1d • $60,000 - $90,000 • Onsite
Cybersecurity Analyst
Wynn Resorts
Wynn Resorts • Las Vegas, NV7d
Explore More Jobs

Tools

Career Hubs

Guides

Company

© 2024 Teal Labs, Inc
Privacy PolicyTerms of Service