Incident Response Analyst

About The Position

Requirements

• 2-4 years of related experience
• Bachelor’s degree, or equivalent combination of education and experience
• 1-2 years of experience in information security and/or digital forensics involving investigating and remediating cyber events.
• Comprehend current cyber security threats such as spear-phishing campaigns, business email compromises, and back-door Trojan malware.
• Experience with Endpoint Detection and Response tools such as Carbon Black, SentinelOne and Microsoft Defender.
• Has a basic knowledge of Windows, Mac, and Linux operating systems. iOS and Android mobile devices.
• Must have experience dealing with confidential information and tact when working on sensitive investigations
• Has a basic knowledge of traditional networking (TCP/IP, DNS, DHCP, etc.) and cloud infrastructure, such as AWS, GCP, and Azure.
• Able to document detailed investigations, remediations, and procedure changes.
• Communicates effectively with peers, partner teams, and management.
• Enjoys thinking analytically and solving problems individually and as a team.
• Possesses a passion for learning all things, information security and incident response.

Responsibilities

• Carrying out daily security monitoring and response procedures.
• Performing initial incident assessment, evidence gathering, and triage.
• Escalating incidents and participating in or leading remediation efforts.
• Investigating and remediating security events occurring in email, workstations, firewall and other platforms.
• Documenting and reporting steps taken to resolve security events using information security runbooks and templates.
• Providing feedback and recommendations for improvement of security controls and response procedures.
• Assisting with expanding MDR/SIEM capabilities, including log coverage, alert development, and process improvements.
• Reporting weekly metrics to the Information Security Leadership.
• Collaborating with the Technology, People Practices, and Legal and Business Affairs departments to build a more secure MSG.
• Participating in On-Call rotation to remediate alerts/incidents outside regular business hours.
• Assisting with managing, analyzing, and remediating phishing emails within our security platform.
• Other information security projects/duties as assigned.

Benefits

• Upskilling employees’ talents and strengths so they can drive their careers forward.
• Robust set of tools and resources to help employees understand their interests and purpose, harness their talents and obtain the skills they need to reach the next step in their careers.
• Growth and longevity for our employees are top priorities here.
• Equal employment opportunities to all employees and applicants for employment without regard to race, color, religion, gender, sexual orientation, gender identity or expression, sexual and reproductive health choices, national origin, citizenship, age, genetic information, disability, or veteran status.
• Compliance with all applicable state and local laws governing nondiscrimination in all locations.
• Consideration for requests for reasonable accommodations as required.