Lead Cyber Defensive Operations Analyst

About The Position

Requirements

• 6+ years’ experience in the Cybersecurity field.
• 5+ years working in progressive Cyber Defensive Operations roles focusing on threat detection and response, digital forensics, malware reverse engineering, threat intelligence, threat hunting, etc.
• Must have in-depth knowledge and experience of the following:
• Cyber attack objectives and attack lifecycles.
• Current and emerging threat actor tactics, techniques, and procedures.
• Incident Response process and methodology.
• Utilization of Cyber Defensive Operations tooling to include SIEM/SOAR, EDR, IDS, NAC, Email security tooling, Forensics collection and investigation software, etc.
• Cyber Defensive Operations metrics and KPI’s.
• Proficiency in process formulation and improvement.
• Strong analytical, data-processing and problem-solving skills.
• Solid technical background with the ability to give instructions to a non-technical audience.
• A minimum of one information security certification: GCIH, GCFA, GCFE, CISSP is required. Certification must be maintained throughout employment tenure.

Nice To Haves

• Previous supervisory experience preferred.
• Other technology relevant industry certifications are encouraged.

Responsibilities

• Contributes to and operationalizes the strategy to shift threat detection capabilities left, confronting attackers earlier in their operations. This is achieved through developing and executing proactive threat hunts across various environments, researching and recommending deceptive technologies, and keeping current with improvements in threat detection procedures.
• Maintains situational awareness of suspicious/malicious cybersecurity events throughout the Flowers Foods environment. This is achieved through tuning and analysis of alerts generated on various security platforms such as EDR, SIEM, Identity, Brand Monitoring, Network IDS, etc.
• Operates as a key component of the Flowers Foods CSIRT by owning the incident responder role during cybersecurity incident and wargame exercises. This is achieved through structured implementation of incident response methodology to scope, document, and respond to any threat actor presence within the Flowers Foods environment.
• Contributes to, maintains, and executes the procedures key to the success of Cyber Defensive Operations at Flowers Foods. This is achieved through development and improvement of triage guides, analysis aids, incident response playbooks, and standard operating procedures for various tasks vital to the Cyber Defensive Operations function.
• Partners with the Engineering and Architecture and Cyber Threat Intelligence teams to translate operational challenges and opportunities into actionable defensive improvements. This is achieved through identifying tooling and policy configuration changes, improved detection methods, and enriched analysis capabilities through awareness of operational environment and adversarial tactics.
• Perform other duties which are deemed by management to be an integral part of the job, including, but not limited to fulfillment of work schedules, adherence to attendance policies, and other applicable operating rules, policies and procedures.

Benefits

• Comprehensive health and medical benefits
• 401(k) Retirement savings plan
• Professional growth and leadership training
• Paid vacation, holidays, and parental leave