Lead Cyber Defense Analyst - Remote

Overview

As a Cyber Defense Lead you will join Experians Cyber Fusion Center performing in-depth analysis evaluation and response to security threats. The team provides global 24x7 security operations and monitoring for cybersecurity events affecting Experian. It is the first line of defense in Experians broader incident response and incident management responsibilities. The team receives and triages cybersecurity alerts including being the dedicated contact for potential security incidents reported by users (e.g. Experian employees). You will report into the Sr. Manager of SecOps and Threat Detection.

Responsibilities

• Monitor the daily operations of the team being the primary liaison between analysts and leadership
• Provide advanced support and act as a designated contact for the Cyber Defense Analysts (e.g. consulting on investigation / analysis)
• Oversee response activities for security events and alerts associated with cyber threats intrusions or compromises
• Use investigative experience and technical skills to analyze events using security tooling and logging (e.g. SIEM EDR) and assess potential risk
• Monitor for anomalous changes in metrics notable open incidents quality concerns or observed risks
• Complete assigned caseload throughout the incident response lifecycle including analysis containment eradication recovery and lessons learned
• Ensure incident updates are performed documented and that case hand-off processes are completed
• Be a mentor to Cyber Defense Analysts providing feedback on the quality of work to analyst(s) and management
• Lead the development of relevant Standard Operating Procedures (SOPs) and training materials
• Collaborate with the Cyber Threat Intelligence (CTI) and content development teams (Threat Detection Engineering) on use case developments

Qualifications :

Qualifications

• 5 years of information security experience working within a Security Operations Center or Cyber Security Incident Response Teams; at least 1 of which ideally includes experience as a team lead
• Bachelors Degree in Computer Science Computer Engineering Information Systems Information Security or a related field.
• History of interpreting device and application logs from a variety of sources (e.g. Firewalls Proxies System Logs Splunk) to identify cause
• 1 professional certifications related to Digital Forensics Incident Response or Ethical Hacking(e.g. GCIH GMON GSOC CEH GCFA ENCE)
• Information security management certifications (CISSP CISM)
• Knowledge of the Incident Response Life Cycle MITRE ATT&CK Framework and Cyber Kill Chain
• Understanding of common Operating Systems (Windows Linux Mac OS) Networking (Firewalls Proxies NetFlow) Cloud Infrastructure (AWS Azure GCP) and Security Technologies (Anti-Virus Intrusion Prevention Web Application Firewalls)
• Experience with Security Monitoring applications such as SIEM (e.g. QRadar Splunk) EDR (e.g. CrowdStrike Falcon Microsoft Defender)
• Experience with SOAR technologies such as Palo Alto XSOAR and Google SecOps (Chronicle)
• Security analysis and architecture knowledge using tools including Defender for Cloud GuardDuty CloudTrail or CloudWatch.
• Record of improving the way work is performed originating action and ideas to lead enhancements to existing processes.
• Abvailable to work outside of normal work hours to respond to cybersecurity incidents
• #LI-Remote

Additional Information :

Benefits/Perks:

• Great compensation package and bonus plan
• Core benefits including medical dental vision and matching 401K
• Flexible work environment ability to work remote hybrid or in-office
• Flexible time off including volunteer time off vacation sick and 12-paid holidays
• Explore all our exciting benefits here: uniqueness is that we celebrate yours. Experians culture and people are important differentiators. We take our people agenda very seriously and focus on what matters; DEI work/life balance development authenticity collaboration wellness reward & recognition volunteering... the list goes on. Experians people first approach is award-winning; Worlds Best Workplaces 2024 (Fortune Top 25) Great Place To Work in 24 countries and Glassdoor Best Places to Work 2024 to name a few. Check out Experian Life on social or our Careers Site to understand why.

  Experian is proud to be an Equal Opportunity and Affirmative Action employer. Innovation is an important part of Experians DNA and practices and our diverse workforce drives our success. Everyone can succeed at Experian and bring their whole self to work irrespective of their gender ethnicity religion colour sexuality physical ability or age. If you have a disability or special need that requires accommodation please let us know at the earliest opportunity.

  
  

  Remote Work :

  Yes

  
  

  Employment Type :

  Full-time