SOC L3 – Incident Responder
www.nuspire.com/careers
About Nuspire:
Nuspire is a leading managed security services provider (MSSP) founded over 20 years ago to revolutionize the cybersecurity experience by taking an optimistic and people-first approach. Our deep bench of cybersecurity experts use world-class threat intelligence and 24x7 security operations centers (SOCs) to detect, respond and remediate advanced cyber threats.
The Impact You Will Make:
The L3 Incident Responder performs in-depth computer security investigations and required actions per the documented incident response lifecycle. This position requires advanced knowledge in areas including security threats and tools, incident investigation, operating systems, and networking,
As a L3 Incident Responder, you will be responsible for monitoring, detecting and responding to security events and incidents to determine root cause analysis. You will be expected to function as a subject matter expert across multiple security domains and help mentor and coach L1 and L2 incident handlers on investigative techniques and investigation processes. You will gain technical knowledge across attack scenarios and gain experience across multiple security and technology platforms. This opportunity is in a 24x7x365 environment, requiring availability for all shifts including nights, weekends and holidays.
In This Role You Will:
- Conduct triage/categorization of potential Events and Incidents
- Conduct initial evidence collection, case creation, and coordination/hand-off to other teams as necessary
- Conduct full investigations
- Assist senior leadership in determining critical incidents
- Respond in a timely manner (within documented SLA and Run Book) to support tickets.
- Contribute to Incident Handling documentation such as standard operating procedures, playbooks, briefings and executive reports
- Utilize SIEM for detection and investigation of security events and incidents
- Utilize case management tools to document and track investigations
- Perform threat mitigation as required
Competencies You Bring:
- This position requires at least 5-10 years of security experience
- Advanced incident investigation and response experience
- Advanced knowledge of networking concepts (TCP/IP, Routing, Switching)
- Advanced knowledge of network defenses such as firewalls, IDS/IPS, Proxies
- Advanced experience with scripting
- Advanced knowledge of operating systems such as Windows, Linux, Mac, Unix
- Advanced knowledge of common attack vectors
- Advanced experience working in SIEM and EDR platforms
- Moderate knowledge of audit requirements and controls (PCI, HIPAA, SOX, etc)
- Bachelors’ Degree in Computer Science, Information Security Assurance, or equivalent experience
Bonus Points If You Have:
- Ability to review packets with tools such as Wireshark and TCPdump
- Advanced understanding of the TCP/IP packet framework
- Advanced understanding of MITRE ATT&CK and Cyber Kill Chain frameworks
- Ethical hacking/penetration testing experience
- Attacker mindset
- Moderate understand of different cryptographic algorithms
- Experience in detect and response positions where isolation and containment procedures were used
- Ability to explain technical security events to non-technical audiences
- Understanding of cyber fraud and the attack vectors
- GIAC, GCIH, GMON, OSCP, CEH, CEPT
- CCNA, CCNP
- CISSP
Company Perks & Benefits:
- Opportunity to earn great experience and growth with a global leader in Cyber & Network Security
- Full benefits including but not limited to: Blue Cross Medical HMO and PPO Options, Mutual of Omaha Dental, Vision, Short-term and Long-term disability, Life Insurance, & 401k
- 100% Employer Paid Telehealth for Employees & their families
- 100% Employer Paid Life Insurance
- 100% Employer Paid Employee Assistance Program (EAP)
- Monthly PTO accrual from your first day of employment, along with many opportunities to earn additional PTO through monthly employee recognition awards and participation in ‘Nuspire Good Time’ Events.
- ‘Nuspire Good Time’ events 2x per month to build team cohesion & collaboration.
- Employee training and professional development programs available through Learning Management System (LMS), with full access to LinkedIn Learning and ITProTV
- Certification Reimbursement Program
- Nuspire is an Equal Opportunity Employer
Nuspire Employee Culture:
Join for the excitement; Stay for the people.
At the core of Nuspire's business model is its emphasis on the human component. Our continued growth over 20 consecutive years allows employees to have constant opportunities to expand their role and responsibilities within the organization. The cybersecurity threat landscape is constantly evolving, and our talented team thrives on solving our clients’ complex cybersecurity challenges. This ideal is not only reflected in how Nuspire delivers services to its customers but also in how it treats its employees.
People who excel at Nuspire are motivated self-starters with a passion for delivering excellence with every client interaction. The culture is focused on building team cohesion and employee career growth through a blending of traditional programs and unique outside of the box experiences. We have a strong, diverse team of remarkable, curious, and experienced professionals—who also know how to have a little fun. If you’re looking for a career in an environment that thrives on change and is anything but ordinary, we want to hear from you. Our award-winning culture enables our employees to perform at their best.
Collaborate with an amazing team that tackles challenges together!
To find out more, please visit www.nuspire.com.
Recent Awards & Recognition:
