Threat Intelligence & Incident Response
About The Position
- Monitor and analyze security events, incidents, and vulnerabilities to identify potential threats and risks to the organization's IT infrastructure. - Support the Threat Intel and Incident Response team - Utilize Microsoft Defender for cloud, identity and email security - Respond to security incidents in a timely and effective manner, following the incident response process and procedures. - Collect, analyze, and preserve digital evidence related to security incidents. - Develop and maintain incident response plans, procedures, and playbooks. - Participate in tabletop exercises, drills, and simulations to test the organization's incident response plans and procedures. - Provide technical support and guidance to IT staff and end-users on security-related issues. - Stay up-to-date with the latest security technologies, trends, and threats to recommend best practices and solutions to enhance the organization's security posture. - Understanding of MITRE attack framework
Requirements
- security
- threat
- splunk
- incident response
- Bachelor's degree in Computer Science, Information Security, or related field.
- At least three to five years of experience in IT security, with a focus on security operations or incident response.
- Knowledge of security technologies, such as firewalls, intrusion detection and prevention systems, antivirus software, and vulnerability assessment tools.
- Experience in conducting incident response and investigations.
- Familiarity with security frameworks, such as NIST, ISO, and CIS.
- Strong analytical and problem-solving skills.
- Excellent communication and interpersonal skills.
- Ability to work independently and as part of a team in a fast-paced, dynamic environment.
Nice To Haves
- Experience in creating alerts and other content in Splunk or other security tools is a plus.
- Relevant certifications, such as CompTIA Security+, Certified Information Systems Security Professional (CISSP), or Certified Ethical Hacker (CEH), are preferred.
Responsibilities
- Monitor and analyze security events, incidents, and vulnerabilities
- Support the Threat Intel and Incident Response team
- Utilize Microsoft Defender for cloud, identity and email security
- Respond to security incidents in a timely and effective manner
- Collect, analyze, and preserve digital evidence related to security incidents
- Develop and maintain incident response plans, procedures, and playbooks
- Participate in tabletop exercises, drills, and simulations to test the organization's incident response plans and procedures
- Provide technical support and guidance to IT staff and end-users on security-related issues
- Stay up-to-date with the latest security technologies, trends, and threats
- Understanding of MITRE attack framework
Benefits
- Medical, dental & vision
- Critical Illness, Accident, and Hospital
- 401(k) Retirement Plan – Pre-tax and Roth post-tax contributions available
- Life Insurance (Voluntary Life & AD&D for the employee and dependents)
- Short and long-term disability
- Health Spending Account (HSA)
- Transportation benefits
- Employee Assistance Program
- Time Off/Leave (PTO, Vacation or Sick Leave)
Stand Out From the Crowd
Upload your resume and get instant feedback on how well it matches this job.
What This Job Offers
Career Level
Mid Level
Number of Employees
5,001-10,000 employees
