Advanced Threat Cyber Security Analyst JOWW0044
Locations: Morristown, NJ
Orlando, FL or
Phoenix, AZ
Employment type: Regular Fulltime Employee
A Fortune 500 company with a global workforce more than 30,000 employees is looking to add to its Cybersecurity team. Join a company rich in diversity where personal accountability, professional growth opportunities and recognition for a job well-done are everyday occurrences.
This position will be responsible to set strategy, design and drive implementation of host and network based advanced threat security technologies, cloud security and security services as the Manager of the Cybersecurity Advanced Threat Team. This team will utilize tools and resources provided to correlate suspicious events and provide analysis, context and assessment of risk/threat. The position is responsible for building the processes to support continuous monitoring of all Business Unit environments via security devices and applications. The position requires the ability to interpret events from enterprise advanced threat security tools to actively hunt for potential incidents across all Business Units, and make key decisions on escalation of potential incidents to the Cybersecurity Incident Response Team. Candidate must possess a strong background in a variety of security technologies covering both host and network-based proactive monitoring.
Responsibilities:
-
Incident Discovery Activities
-
Utilize Threat Intelligence
-
Escalation Activities
-
Incident Response Support
Qualifications:
-
Proactive “hunting” activities using advanced threat network and host-based tools
-
Demonstrated and proven experience in Cybersecurity Incident Discovery and event management, Intrusion Prevention/Detection Systems, Firewalls, Content Filtering Technology, Data Loss Prevention, Configuration Management and Monitoring, End-Point Protection, Database Security and Log Collection and Analysis.
-
Provide support in the detection, response, mitigation, and reporting of cyber threats affecting client networks with the ability to evaluate IT environments and identify security goals, objectives and requirements.
-
Maintain and employ a strong understanding of advanced persistent threats, continuous vulnerability assessment, response and mitigation strategies used in Cybersecurity operations.
-
Maintenance, monitoring and analysis of audit logs with a strong ability to perform in-depth security forensics and analysis to effectively identify suspicious activity by detecting, tracking and remediating malicious code.
-
Strong working knowledge of security-relevant data, including network protocols, ports and common services, such as TCP/IP network protocols and application layer protocols (e.g. HTTP/S, DNS, FTP, SMTP, Active Directory etc.)
-
Experience with reverse engineering malicious files or code
-
Experience with Python, Perl, Bash, PowerShell a plus
-
B.A. or B.S. from a four year accredited university or relevant security related experience
-
3+ years relevant work experience in IT Security, regulatory compliance, risk management, incident response or network security with strong knowledge working as part of a SOC team
-
CISSP, GCIA, GCIH, GPEN, CEH not required, but a plus.
To apply, forward resume to:
Attn Job# JOWW0044 Advanced Threat Analyst