The #1 Site for IT and Engineering Jobs - search all IT and Engineering  jobs.
Mh60tx69dzlj1t8dnwn

Security Incident Response Analyst

Job Description

Summary:

Perform front line accurate and precise real-time monitoring and analysis of correlation of logs/alerts from a multitude of security devices with a focus on the determination of whether said events constitute security incidents as well as network traffic. Working closely with Tier 1 as well as being the point of escalation for Tier 1 analysts.

Job Details:

Responsibilities:

- Assist in the development and maintenance of security monitoring and incident response services including but not limited to network event analysis, host event analysis, email analysis

- Monitor ticketing queue and support Tier 1 analysts in performing their duties

- Triage security events as they come in both as a first level analyst and an escalation point

- Peer Review Tier 1 work products for completeness and accuracy. Mentor Tier 1 analysts on opportunities to improve

- Lead and re-mediate simple security incidents

- Support complex security incidents as directed by Incident Response Coordination Team

- Perform proactive hunting style activities to identify and baseline the environment. Record findings to build a comprehensive body of knowledge around normal behaviors. Develop rules based on interesting findings to support Tier 1 analysts and peers in repeating the detection activities.

- Support management team on activities as directed to improve the security monitoring and incident response services

Qualifications:

- Bachelor's degree in Computer or Software Engineering, Computer Science, Information Management, Information Science or a related technical field preferred

- 4+ years of experience working in information security or information technology roles

- Demonstrated ability to interact with business and technical audiences across all levels of an organization

- Strong time management skills and experience handling multiple initiatives with competing priorities

- Strong analytical and technical skills

- Experience working in a security operations center environment highly desired

- In-depth knowledge of common internet protocols (e.g., DNS, HTTP)

- In-depth knowledge of common information security threats at all OSI layers

- Security knowledge across multiple security domains and technologies (e.g., operating systems, databases, networking, applications, identity and access management)

- Strong knowledge of and experience working in Windows and Linux environments

- Experience working with APIs (e.g., SOAP, RESTful)

- Experience working with common data formats (e.g., CSV, XML, JSON, Syslog, CEF)

- Ability to develop custom scripts using common scripting languages (e.g., Python, PowerShell, VBA)

- Experience programming in object-oriented languages (e.g., C++, C#, Java) preferred

Certifications:

- Possession of industry certifications highly preferred including, but not limited to, Certified Information Systems Security Professional (CISSP), Certified Information Security Manager (CISM), GIAC Web Application Penetration Testing (GWAPT), GIAC Network Penetration Testing (GPEN), Certified Ethical Hacker (CEH), and Offensive Security Certified Professional (OSCP)

Global Payments Inc. is an equal opportunity employer.

Global Payments provides equal employment opportunities to all employees and applicants for employment without regard to race, color, religion, sex (including pregnancy), national origin, ancestry, age, marital status, sexual orientation, gender identity or expression, disability, veteran status, genetic information or any other basis protected by law. Those applicants requiring reasonable accommodation to the application and/or interview process should notify a representative of the Human Resources Department.

Job Requirements

 

Job Snapshot

Location US-GA-Atlanta
Employment Type Full-Time
Pay Type Year
Pay Rate N/A
Store Type IT & Technical
Apply

Company Overview

Global Payments Inc.

Global Payments has been a market leader in the U.S. since the 1960s when its former parent company, National Data Corporation, pioneered a specialized data processing system. For over 50 years, Global Payments has been delivering innovative payment solutions. Our software-driven, technology-enabled solutions are leading our customers into the future. Headquartered in Atlanta, Georgia with more than 10,000 employees worldwide, Global Payments is a member of the S&P 500 with customers and partners in 30 countries throughout North America, Europe, the Asia-Pacific region and Brazil. Learn More

Contact Information

US-GA-Atlanta
Icon-social-facebookIcon-social-linkedinIcon-social-twitter
Snapshot
Global Payments Inc.
Company:
US-GA-Atlanta
Location:
Full-Time
Employment Type:
Year
Pay Type:
N/A
Pay Rate:
IT & Technical
Store Type:

Job Description

Summary:

Perform front line accurate and precise real-time monitoring and analysis of correlation of logs/alerts from a multitude of security devices with a focus on the determination of whether said events constitute security incidents as well as network traffic. Working closely with Tier 1 as well as being the point of escalation for Tier 1 analysts.

Job Details:

Responsibilities:

- Assist in the development and maintenance of security monitoring and incident response services including but not limited to network event analysis, host event analysis, email analysis

- Monitor ticketing queue and support Tier 1 analysts in performing their duties

- Triage security events as they come in both as a first level analyst and an escalation point

- Peer Review Tier 1 work products for completeness and accuracy. Mentor Tier 1 analysts on opportunities to improve

- Lead and re-mediate simple security incidents

- Support complex security incidents as directed by Incident Response Coordination Team

- Perform proactive hunting style activities to identify and baseline the environment. Record findings to build a comprehensive body of knowledge around normal behaviors. Develop rules based on interesting findings to support Tier 1 analysts and peers in repeating the detection activities.

- Support management team on activities as directed to improve the security monitoring and incident response services

Qualifications:

- Bachelor's degree in Computer or Software Engineering, Computer Science, Information Management, Information Science or a related technical field preferred

- 4+ years of experience working in information security or information technology roles

- Demonstrated ability to interact with business and technical audiences across all levels of an organization

- Strong time management skills and experience handling multiple initiatives with competing priorities

- Strong analytical and technical skills

- Experience working in a security operations center environment highly desired

- In-depth knowledge of common internet protocols (e.g., DNS, HTTP)

- In-depth knowledge of common information security threats at all OSI layers

- Security knowledge across multiple security domains and technologies (e.g., operating systems, databases, networking, applications, identity and access management)

- Strong knowledge of and experience working in Windows and Linux environments

- Experience working with APIs (e.g., SOAP, RESTful)

- Experience working with common data formats (e.g., CSV, XML, JSON, Syslog, CEF)

- Ability to develop custom scripts using common scripting languages (e.g., Python, PowerShell, VBA)

- Experience programming in object-oriented languages (e.g., C++, C#, Java) preferred

Certifications:

- Possession of industry certifications highly preferred including, but not limited to, Certified Information Systems Security Professional (CISSP), Certified Information Security Manager (CISM), GIAC Web Application Penetration Testing (GWAPT), GIAC Network Penetration Testing (GPEN), Certified Ethical Hacker (CEH), and Offensive Security Certified Professional (OSCP)

Global Payments Inc. is an equal opportunity employer.

Global Payments provides equal employment opportunities to all employees and applicants for employment without regard to race, color, religion, sex (including pregnancy), national origin, ancestry, age, marital status, sexual orientation, gender identity or expression, disability, veteran status, genetic information or any other basis protected by law. Those applicants requiring reasonable accommodation to the application and/or interview process should notify a representative of the Human Resources Department.

Job Requirements

 
Sologig Advice

For your privacy and protection, when applying to a job online: Never give your social security number to a prospective employer, provide credit card or bank account information, or perform any sort of monetary transaction.Learn More

By applying to a job using sologig.com you are agreeing to comply with and be subject to the workinretail.com Terms and Conditions for use of our website. To use our website, you must agree with theTerms & Conditionsand both meet and comply with their provisions.
Security Incident Response Analyst Apply now