Lead, Cyber Defense & Incident Response

Prudential Financial•Newark, NJ

About The Position

Prudential’s Global Technology team is the spark that ignites the power of Prudential for our customers and employees worldwide. Our organization plays a critical and highly visible role in delivering customer-driven solutions across every area of the company. The Global Technology team is made up of diverse, agile-thinking, and highly skilled professionals; we use our combined capabilities to enable the organization with innovation, speed, agility, scalability, and efficiency. The Global Technology team takes great pride in our culture where digital transformation is built into our DNA. When you join the Global Technology organization at Prudential, you’ll unlock a challenging and impactful career – all while growing your skills and advancing your profession at one of the world’s leading financial services institutions. Prudential Financial is a Fortune 100 financial services leader with a dynamic and diverse workforce and a strong emphasis on talent management. Our Cyber Defense & Response (CDR) team is a global team responsible for incident response and investigations in Asia, Europe and the Americas. This is an exciting time to join a growing team. The CDR team is seeking an experienced individual for the position of Digital Forensics & Incident Response Lead. Your Team & Role: The Digital Forensics & Incident Response Lead will serve as an individual technical contributor, responsible for conducting digital forensic and incident response analysis, responding to security incidents, assisting with threat hunting operations, performing incident readiness activities, and completing other related cybersecurity tasks as required in a highly dynamic global corporate environment.

Requirements

5 plus years of experience responding to cyber incidents in large corporate/enterprise environments.
Bachelor's degree in Digital Forensics, Information Security, Computer Science, Information Technology, or related discipline.
Experience using enterprise forensic software suites (X-Ways, EnCase, etc.).
Knowledge of common scripting languages (Python, PowerShell, Bash, etc.)
Industry standard certifications (CCE, EnCE, GCFE, GCFA, GCIH, GREM, GNFA, GPEN, etc.)
Comprehensive understanding of adversarial threat frameworks such as MITRE ATT&CK and Lockheed Martin’s Cyber Kill Chain

Responsibilities

Scope and perform enterprise-wide, global investigations with both on-prem and cloud technologies such as Active Directory/Entra, M365, Azure, AWS, etc.
Leverage Splunk’s Search Processing Language (SPL) and Microsoft’s Kusto Query Language (KQL) in support of investigative workflows
Utilize EDR tooling to perform enterprise-wide investigations and analysis
Perform log, host, memory, and network-based forensics in support of active investigations
Perform malicious code triage in support of incident response activities
Possess strong verbal and written communication skills sharing key investigative details to stakeholders and business leaders globally
Collaborate closely with technical stakeholders in support of active investigations
Develop scripts, queries and automation workflows in support of XSOAR
Lead and contribute to unique team-driven projects, advancing the team's forensic and response capabilities across the enterprise

Benefits

Market competitive base salaries, with a yearly bonus potential at every level.
Medical, dental, vision, life insurance, disability insurance, Paid Time Off (PTO), and leave of absences, such as parental and military leave.
401(k) plan with company match (up to 4%).
Company-funded pension plan.
Wellness Programs including up to $1,600 a year for reimbursement of items purchased to support personal wellbeing needs.
Work/Life Resources to help support topics such as parenting, housing, senior care, finances, pets, legal matters, education, emotional and mental health, and career development.
Education Benefit to help finance traditional college enrollment toward obtaining an approved degree and many accredited certificate programs.
Employee Stock Purchase Plan: Shares can be purchased at 85% of the lower of two prices (Beginning or End of the purchase period), after one year of service.
Eligibility to participate in a discretionary annual incentive program is subject to the rules governing the program, whereby an award, if any, depends on various factors including, without limitation, individual and organizational performance.

Stand Out From the Crowd

Upload your resume and get instant feedback on how well it matches this job.

Upload and Match Resume