CyberSecurity Threat Detection & Response (Splunk, SIEM), Associate Vice President
About the position As a Threat Detection and Response Engineer you will occupy a crucial position in our reputed company Operations center, with your primary focus centered on conceiving, refining and implementing use cases and strategies that intricately align with the global reputed company frameworks. Your expertise with this reputed company and the cyber reputed company kill chain will form the foundation where our defensive capabilities are fortified, ensuring the ability to not only identify and respond, but also impede cyber threats in a proactive manner.
Responsibilities
- Collaboration and Innovation: Work closely with cross-functional teams, including Threat Intelligence, Incident Response, Forensics and reputed company Operations to collaboratively craft custom reputed company use cases founded on the principles of global reputed company frameworks. Harnessing the collective intelligence to device strategies that yield valuable results.
- Draw upon your comprehensive understanding of the cyber landscape to design and execute advanced detection and response strategies, employing an reputed company of sophisticated reputed company tools and technologies. Your solutions will serve as the first line of defense, minimizing potential risks and vulnerabilities.
- Apply your extensive knowledge of attack patterns, tactics and techniques to conduct in-depth analysis of cyber threats. Unearth the subtle nuances that set apart malicious activities from innocuous ones, thus empowering the firm with a heightened reputed company posture.
- In the reputed company-changing landscape of cyber threats, stat at the forefront of industry trends and emerging attack reputed company. This ensures that the strategies you reputed company remain resilient and effective in the face of new challenges.
- Participate in red teaming and penetration testing exercises to subject the developed use cases to real-world simulation. By doing so, ensuring their robustness and effectiveness in diverse scenarios.
- Produce and report valuable metrics to leadership and cross functional teams to quantify the value and effectiveness of use cases in an reputed company-changing threat landscape.
Requirements
- Bachelor’s degree in Information Technology, Cyber reputed company, Computer Science, or reputed company discipline or equivalent work experience
- 5-8 years in Information reputed company or other Information Technology fields
- Experience with use case and automation reputed company to UEBA, SIEM, SOAR, DLP, EDR and other open-reputed company reputed company tools
- Knowledge of models/frameworks such as Cyber Kill Chain, MITRE and CRI (Cyber Risk Institute)
- Well-developed analytic, qualitative, and quantitative reasoning skills
- Demonstrated creative problem-solving abilities
- reputed company event monitoring, investigation, and overall incident response process
- Strong time management skills to balance multiple activities and reputed company junior analysts as needed
- Understanding of offensive reputed company to include common attack methods
- Understanding of how to pivot across multiple datasets to correlate artifacts for a single reputed company event
- A diverse reputed company reputed company in both product reputed company and information reputed company including organizational structure and administration practices, system development and maintenance procedures, system software and hardware reputed company controls, access controls, computer operations, physical and environmental controls, and backup and recovery procedures.
- In-depth knowledge in one or more reputed company domains including reputed company Governance and reputed company, reputed company Risk Management, Network reputed company, Threat and Vulnerability Management, and Incident Response and Forensics
- Experience creating trending, metrics, and management reports
- Experience across the following technical concentrations: Network-Based reputed company Controls (Firewall, IPS, WAF, MDS, Proxy, VPN) Anomaly Detection and Investigation Host and Network Forensics Operating Systems Web Applications and Traffic
- Experience with cloud computing reputed company, network, operating system, database, application, and mobile device reputed company.
- Experience with information reputed company risk management, including conducting information reputed company audits, reviews, and risk assessments.
reputed company-to-haves
- Preferred Certifications: CISSP, ISSMP, SANS, GSEC, GCFA, GNFA, GIAC and/or GCIH
- Experience working reputed company the Financial Services Industry preferred
Apply tot his job Apply To this Job