fulltimejobs.com
Jobs in Australia Jobs in Canada Jobs in China Jobs in France Jobs in Germany Jobs in India Jobs in Indonesia Jobs in Japan Jobs in Malaysia Jobs in Pakistan Jobs in Philippines Jobs in Russia Jobs in Singapore Jobs in Taiwan Jobs in Thailand Jobs in U.K. Jobs in USA Jobs in World Wide

Job Details
Email to Friend Save Back

Senior Cybersecurity Analyst

NEW YORK-10017, NY, US
 04/06/2019

-

Required Skills

    scripting language
Company

Infinity Consulting Solutions, Inc

Experience

5 to 7 Year(s)

Job Description

The Senior Cybersecurity Analyst will be responsible for handling, and escalation of, incidents which require highly technical analysis, such as network intrusions and advanced malware infections which have been identified by the Information Risk & Security team.

In addition, they may assist with the facilitation of E-Discovery requests from key stakeholders, as well as the identification, implementation and support of technologies and procedures used to aid in the detection of new threats and mitigation activities.

Functional Responsibilities

Analyze, correlate and action on data from subscription and public cyber intelligence services, develop tactics to combat future threats, and invoke the Incident Response Plan if necessary.

Provide timely review of security alerts originating from any source, including managed security services, internal tools, and internal or external reporting.

Analyze and respond to security events in alignment with the Incident Response Plan and its procedures.

Perform deep forensic review of systems in response to incidents or investigations, providing timely and complete reports to management.

Keep abreast of current security threats, events, technologies, vendors and other aspects of the cyber threat landscape. Propose changes or enhancements to our security posture where appropriate.

Operate and maintain information security monitoring products and services.

Investigate security incidents and events, using SIEM and other tools; collect evidence and work with teams to isolate and/or remediate as necessary.

Proactively collect, assess, and communicate information security intelligence to reduce the firm’s risk exposure and better position the firm to prepare for potential security threats.

Communicate and escalate incidents to management in accordance with the Incident Response Plan.

Work with third party security monitoring firms to research and respond to incidents.

Participate in projects in multiple areas and provide technical expertise and guidance on
Information Security issues.

Monitor security tools alerts for unusual or suspicious activity; research alerts and make recommendations to remediate concerns.

Respond to Electronic Discovery requests in a timely and accurate manner, as requested by the Human Resources, Legal and Compliance teams.

Writes functional requirements and procedure documents

Security Incident Response and Threat Management.

Networking fundamentals including Network Forensics.

Electronic Discovery (E-Discovery).

Patch and Vulnerability management.

Endpoint security.

Anti-malware and advanced threat protection solutions.

Network vulnerability scanning tools.

Qualifications

Minimum education and work experience required for this position include:

At least 5-7 years of IT industry experience, preferably in a financial services organization.

Minimum of 3 recent years direct incident management/handling and digital forensics experience.

Extensive knowledge and hands-on experience with SIEM technologies and other forensics, evidence collection, and incident remediation tools.

Experience setting up, using and managing scanning tools is considered a plus.

Knowledge of regular expressions and at least one common scripting language (e.g. PERL, Python, PowerShell).

BS or BA degree, preferably in technology.

Relevant certifications such as GCIH, GCFE, GCFA, or CISSP are considered a plus.

Preferred

Ability to think with a security mindset. The successful candidate has a strong IT background with expert level knowledge of multiple relevant security practice areas (anti-malware solutions, patch and vulnerability management, network security; monitoring; endpoint, etc.) in addition to forensics and incident management.

Hands-on experience with forensics tools and techniques, such as file carving, disk imaging and write blockers.

Extensive knowledge of security tools which perform functions such as intrusion detection and prevention (IDS/IPS), vulnerability scanning, software deployment, and log archiving.
A wide range of experience in these tools, from hands-on configuration and operation, to high level design and architecture is preferred.

Experience in correlating malware infections with attack vectors to determine the extent of security and data compromise.

Experience in digital forensics technology, procedures and processes, a solid understanding of the NIST Incident Handling Guidelines (800-61r2), as well as the E-
Discovery lifecycle.

Ability to work in a time-sensitive environment; must be detail oriented and able to multitask to meet deadlines and company objectives.

Experience in large, geographically diverse enterprise networks.

Strong written and oral communication skills including the ability to interact directly with customers that do not have an IT background.

Documentation; experience in writing functional requirements and procedure documents.

Security Analyst
Information Technology
No Preference
FullTime Job
Other
1
Candidate Requirements
-
Bachelors
Walkin Information
-
-
-
Recruiter Details
Doug Klares
1350 Broadway, Suite 2205, NEW YORK-10018, NY, US
- 
Email to friend Save Back