Our client is seeking a seasoned Sr. Security Analyst to lead the development of information security technology tasks and projects. This role is integral to our client's team, requiring the ability to communicate effectively with all levels of management and generate, coordinate, and maintain project plans.
Key Responsibilities:
- Lead the development and execution of security incident response plans and cyber forensic investigations
- Develop comprehensive incident reports and investigation summaries
- Proactively detect and identify high-confidence threats to the brand, service infrastructure, and enterprise users and systems
- Analyze and validate security control requirements, define mitigation rules, and assist with troubleshooting support related to security detection or protection technologies
- Review existing tools, applications, and processes to strengthen and optimize current security capabilities
- Lead analysis and review of security events for anomalous activity and collaborate with respective peer groups to safeguard company information assets
- Explore practical security solutions to address emerging threats and compliance requirements, including design and implementation of recommended solutions
Ideal candidates will have:
- 8+ years' experience with Incident Response
- Experience in a 24x7 global enterprise, preferably in the Financial industry
- SANS GIAC certifications
- Experience with cloud platforms and managing or maintaining malware analysis sandboxes
- Knowledge of malware analysis tools, Python and/or PowerShell scripting, and Exabeam suite of products or other SIEM tools
- Excellent communication and interpersonal skills
- Understanding of the business and the ability to assess and address risk without negatively impacting the business
- Ability to identify and analyze malicious code
- In-depth understanding of Windows operating systems
- Strong knowledge of networking technologies (TCP/IP, HTTP, SMTP, etc.), web application vulnerabilities and solutions, Unix & Linux operating systems, and the functions of various security infrastructure
- Ability to identify vulnerabilities in networks, systems, and applications using COTS tools and manual processes
- General knowledge of network and systems forensics
- In-depth knowledge of incident response processes and procedures
- General knowledge of threat intelligence
- Ability to provide 24-hour on-call support on a rotating basis
- CISSP Certified
Our client is committed to fostering a diverse, inclusive, and equitable workplace. We welcome candidates with diverse experiences, perspectives, and backgrounds to join our team and contribute to our mission.