JOB DESCRIPTION
Job Summary
"Responsible for monitoring, identifying, investigating and analyzing all response activities related to cybersecurity incidents within an organization. Identifies security flaws and vulnerabilities; responds to cybersecurity incidents, conducts threat analysis as directed and addresses detected incidents. Conducts network or software vulnerability assessments and penetration testing utilizing reverse engineering techniques. Perform vulnerability analysis and exploitation of applications, operating systems or networks. Identifies intrusion or incident path and method. Isolates, blocks or removes threat access. Evaluates system security configurations. Evaluates findings and performs root cause analysis. Performs analysis of complex software systems to determine both functionality and intent of software systems. Resolves highly complex malware and intrusion issues. Contributes to the design, development and implementation of countermeasures, system integration, and tools specific to Cyber and Information Operations. Has in-depth experience, knowledge and skills in own discipline. Usually determines own work priorities. Acts as a resource for colleagues with less experience. Employees at all levels are expect to: - Understand our Operating Principles; make them the guidelines for how you do your job - Own the customer experience - think and act in ways that put our customers first, give them seamless digital options at every touchpoint, and make them promoters of our products and services - Know your stuff - be enthusiastic learners, users and advocates of our game-changing technology, products and services, especially our digital tools and experiences - Win as a team - make big things happen by working together and being open to new ideas - Be an active part of the Net Promoter System - a way of working that brings more employee and customer feedback into the company - by joining huddles, making call backs and helping us elevate opportunities to do better for our customers - Drive results and growth - Respect and promote inclusion and diversity - Do what's right for each other, our customers, investors and our communities"
Job Description
Core Responsibilities
Monitors networks for security events and alerts to potential/active threats, intrusions, and/or compromises.
Restores environment after an incident and ensures that the managed security service has thorough detection capabilities in place for emerging threats.
Performs service requests from internal/external teams.
Maintains an advanced understanding of cyber security threats, vulnerabilities, attacks, responsible groups, motivations and techniques.
Continues to assess the evolving threats and new technologies, solutions, and services to stay ahead of them through research.
May perform documentation, vetting and weaponization of identified vulnerabilities for operational use.
Evaluates event flows to identify common risks and vulnerabilities to develop and implement solutions.
Assists with security audits, risk analysis, network forensics and penetration testing.
Provides assistance in monitoring the security of all designated networks and systems.
May prepare detailed incident reports and technical briefs for the IT security team.
Conducts After Action Reviews (AAR) to improve the response process including updating playbooks.
Strives to achieve Company business objectives and cyber operations objectives in daily activity.
Documents results of applied work processes and practical application of technical standards. Reports results to management. Recommends innovative solutions.
Utilizes resources to solve moderate development problems and recommends new resources to management.
Sets the tone and pace for work performance within project groups and impressionable Cyber Operations staff.
Consistent exercise of independent judgment and discretion in matters of significance.
Regular, consistent and punctual attendance. Must be able to work nights and weekends, variable schedule(s) as necessary.
Other duties and responsibilities as assigned.
Employees at all levels are expected to:
Understand our Operating Principles; make them the guidelines for how you do your job.
Own the customer experience - think and act in ways that put our customers first, give them seamless digital options at every touchpoint, and make them promoters of our products and services.
Know your stuff - be enthusiastic learners, users and advocates of our game-changing technology, products and services, especially our digital tools and experiences.
Win as a team - make big things happen by working together and being open to new ideas.
Be an active part of the Net Promoter System - a way of working that brings more employee and customer feedback into the company - by joining huddles, making call backs and helping us elevate opportunities to do better for our customers.
Drive results and growth.
Respect and promote inclusion & diversity.
Do what's right for each other, our customers, investors and our communities.