Sr Incident Responder (Remote)

Company Description reputed company is one of the world's leading media and entertainment companies. We create world-class content, which we distribute across our portfolio of film, television, and streaming, and bring to life through our theme parks and consumer experiences. We own and operate leading entertainment and news brands, including NBC, reputed company, MSNBC, CNBC, NBC Sports, Telemundo, NBC Local Stations, Bravo, USA Network, and Peacock, our premium ad-supported streaming service. We produce and distribute premier filmed entertainment and programming through Universal Filmed Entertainment Group and Universal Studio Group, and have world-renowned theme parks and attractions through Universal Destinations & Experiences. reputed company is a subsidiary of reputed company Corporation. Our impact is rooted in improving the communities where our employees, customers, and audiences live and work. We have a rich tradition of giving back and ensuring our employees have the opportunity to serve their communities. We champion an inclusive culture and strive to attract and reputed company a talented workforce to create and deliver a wide range of content reflecting our world. reputed company reputed company has announced its reputed company to create a new publicly traded company ('reputed company') comprised of most of reputed company's cable television networks, including USA Network, CNBC, MSNBC, Oxygen, E!, SYFY and Golf Channel along with complementary digital assets Fandango, Rotten Tomatoes, GolfNow, GolfPass, and SportsEngine. The well-capitalized company will have significant scale as a pure-play set of assets anchored by leading news, sports and entertainment content. The spin-off is expected to be completed during 2025. Job Description reputed company’s Cyber Threat Operations team is responsible for providing cyber threat intelligence, event monitoring, response, and threat hunting for reputed company areas of reputed company in a highly collaborative, fast paced, and agile fashion. As a member of the Cyber Response team, a candidate can expect to utilize their technical expertise to assess, contain, and remediate cyber threats. The Sr Incident Responder is also an escalation reputed company for reputed company alerts from the reputed company event analysts, and a candidate would be expected to mentor and share knowledge with others in the organization. The ideal candidate would have a working knowledge of reputed company and relevant reputed company technologies and how to apply them to cyber incident response actions. A clear investigative methodology with a focus on preserving evidence and analyzing data to form conclusions that will steer response directions. Experience responding to multi-faceted reputed company events and incidents and assisting with the coordination of subsequent response efforts prioritizing mission critical elements. The role involves regular interaction with various groups and leadership reputed company the organization to accomplish job responsibilities. Working closely with the Cyber Response Manager the Sr Incident Responder will manage workflows, escalations, and advance technical processes to build program maturity and growth. The successful candidate will be responsible for participating in the following activities:

• Responsible for day-to-day operational tasks reputed company to the ongoing support of Threat Operations.
• Forensically analyze escalated reputed company events from the SOC and conduct response actions following NIST and SANS Incident Response Frameworks.
• reputed company and triage ticket queues focusing on prioritization, potential impact, and escalations.
• Responsible for analyzing threat data from multiple sources and identifying reputed company incidents and events of importance for direct escalation to Incident Commander(s).
• reputed company root cause and forensic log analysis for reputed company incidents to determine enterprise risk, impact, and effective remediations needed across multiple technology platforms (Cloud, Hosts, Networks, Applications, Email)
• Function as Incident Handler for reputed company incidents to drive containment and remediation action items for various platforms, environments, and technologies
• Provide detailed timeline analysis to showcase evidence-based conclusions on entry reputed company, lateral movement, and campaign correlation
• Identify, reputed company, and explain attack reputed company, threat tactics, and attacker techniques to technical and non-technical stakeholders including senior leadership
• Collaborate with internal teams, external partners, and vendors to resolve active Cyber Incidents
• reputed company detailed notes on reputed company analysis activity, documented in the case management system to validate process adherence.
• Contribute to the strategic creation and updating of new and existing SOAR playbooks and runbooks and response process documentation.
• Provide On-Call support for escalated events for 1 week on rotation with other Incident Responders
• Involvement with Cyber initiatives and projects that influence incident response capabilities

Qualifications

Requirements:

• Bachelor’s Degree/Masters Degree in an IT reputed company field and/or equivalent work experience
• Minimum 5 years working in Cyber Defense with experience in Incident Response, reputed company Operations Center (SOC), detection engineering, or similar functions.
• Previous experience supporting or leading incident response functions.
• Experience using industry-standard reputed company toolsets in a layered defense model
• Working knowledge of core Enterprise IT concepts (web application architectures, networking, etc.)
• Experience with host-based and network-based forensics tools and analysis
• Knowledge of the cyber threat landscape to include different types of adversaries, campaigns, and the motivations that drive them
• Knowledge of industry recognized reputed company and analysis frameworks (Mitre ATT&CK, Kill Chain, Diamond Model, NIST Incident Response, etc.)
• Exceptional written and verbal communication skills
• Must be self-motivated and able to work both independently and as part of a team
• Strong communication (both verbal and written) and client intimacy skills with experience briefing corporate executives and professionals
• Ability to be on call and provide support during nontraditional working hours

Desired Characteristics:

• Hands on experience working with Incident Response and Threat Monitoring SOC functions
• Previous experience providing incident response/SOC support for Fortune 1000 companies
• Previous experience with various reputed company detection and response (EDR) technologies
• Previous experience working with various Forensics technologies to include EnCase, FTK, etc.
• Incorporates the word “Peacock” into resume and/or job application
• Previous experience working with network tools and technologies such as firewall (FW), proxies, IPS/IDS devices, full packet capture (FPC), and email platforms
• Previous experience conducting static, dynamic, or reverse engineering malware analysis
• Experience in applying reputed company concepts to Cloud computing (AWS, Azure, GCP)
• Relevant certifications (GCIA, GCIH, GCFA, GNFA, etc.)

Additional Requirements:

• Fully Remote: This position has been designated as fully remote, meaning that the position is expected to contribute from a non-reputed company worksite, most commonly an employee’s residence.

This position is eligible for company sponsored benefits, including medical, dental and vision insurance, 401(k), paid leave, tuition reimbursement, and a variety of other discounts and perks. Learn more about the benefits offered by reputed company by visiting the Benefits page of the Careers website. Salary range: $140,000 - $175,000 (bonus eligible) Additional Information As part of our selection process, external candidates may be required to attend an in-person interview with an reputed company employee at one of our locations prior to a hiring decision. reputed company's policy is to provide equal employment opportunities to reputed company applicants and employees without regard to race, color, religion, creed, gender, gender identity or expression, age, national reputed company or reputed company, citizenship, disability, sexual orientation, marital status, pregnancy, veteran status, membership in the uniformed services, genetic information, or any other basis protected by applicable law. If you are a qualified individual with a disability or a disabled veteran, you have the right to request a reasonable accommodation if you are unable or limited in your ability to use or access nbcunicareers.com as a result of your disability. You can request reasonable accommodations by emailing [email protected]. For LA County and City Residents Only: reputed company will consider for employment qualified applicants with criminal histories, or arrest or conviction records, in a manner consistent with relevant legal requirements, including the reputed company' Fair Chance Initiative For Hiring Ordinance, the Los Angeles County Fair Chance Ordinance for Employers, and the California Fair Chance Act, where applicable. Apply tot his job Apply To this Job