Be an early applicantLess than 25 applicants

Company

Original Job Post

myGwork - LGBTQ+ Business Community · 3 days ago

Principal Security Incident Response Analyst

Colorado, United States

Full-time

Onsite

Senior Level

$109K/yr - $224K/yr

10+ years exp

Wonder how qualified you are to the job?

Maximize your interview chances

Internet

Insider Connection @myGwork - LGBTQ+ Business Community

Discover valuable connections within the company who might provide insights and potential referrals, giving your job application an inside edge.

Responsibilities

Respond to security events and threats that are escalated from external customers, internal security teams, and other developers and engineers.

Lead complex investigations that will include, triage, containment/mitigation, scoping, hunting, collection, processing, analysis, remediations, and after-action reporting and documentation.

Work closely with security engineering teams to improve monitoring, detection, and tooling

Understand the current threat landscape including emerging attacker TTPs and be able to translate them to the gaps and risks in the various environments in scope.

Operate Security tooling including but not limited to a Security Information Event Management (SIEM) platform, Intrusion Detection Systems (IDS), Firewalls, Anti-Malware solutions, and Endpoint Detection and Response (EDR)

Collect, process, and analyze an array of additional artifacts unavailable in security tooling. (logs, host/instance-based artifacts)

Experience working on Windows, Mac, and Linux operating systems

Provide high quality written and verbal reports as required

Develop new analysis tactics and capabilities for digital forensics and incident response

Author SOPs, playbooks and Incident Response plans

Lead Tabletop exercises

Mentor and train analyst

Support on-call rotations

Effective operator in a remote setting, adept at using technologies and self-imposing good time management practices

Qualification

Find out how your skills align with this job's requirements. If anything seems off, you can easily click on the tags to select or unselect skills to reflect your actual expertise.

Cybersecurity ArchitectureSOC WorkIncident ResponseForensicsVulnerability ManagementThreat IntelligencePythonPerlScriptingOperating SystemsWindowsUNIX/LINUXMacOSSecurity ConcernsThreat Actor TacticsInformation SecuritySecurity OperationsNetwork SecurityCloud SecurityProblem-SolvingCommunication

Required

Bachelor's Degree in Information Security and Assurance, Cyber Security, Computer Science, Software Engineering, Risk Management or maintain multiple security related credentials (Certified Incident Handler (GCIH), EC-Council Certified Incident Handler (ECIH), Certified Information Systems Security Professional (CISSP))

10+ years of related cybersecurity architecture, engineering, and/or SOC work experience (monitoring, detection, incident response, forensics, vulnerability management, threat intelligence)

Ability to script/code using Python, Perl, or an equivalent language

Excellent written and verbal communications, including presentation skills

Proven ability to effectively communicate with all levels of the organization, as well as customers and external parties

Experience with variety of operating systems and threats that target them including Windows, UNIX/LINUX, and MacOS

Excellent verbal/non-verbal communication skills with the ability to deliver technical information to non-technical staff

Understanding of common security concerns and associated threat actor tactics

A broad background in information security with experience in security operations, vulnerabilities and exploitation, network security, and cloud security

Benefits

Medical, dental, and vision insurance, including expert medical opinion

Short term disability and long term disability

Life insurance and AD&D

Supplemental life insurance (Employee/Spouse/Child)

Health care and dependent care Flexible Spending Accounts

Pre-tax commuter and parking benefits

401(k) Savings and Investment Plan with company match

Paid time off: Flexible Vacation is provided to all eligible employees assigned to a salaried (non-overtime eligible) position. Accrued Vacation is provided to all other employees eligible for vacation benefits. For employees working at least 35 hours per week, the vacation accrual rate is 13 days annually for the first three years of employment and 18 days annually for subsequent years of employment. Vacation accrual is prorated for employees working between 20 and 34 hours per week. Employees working fewer than 20 hours per week are not eligible for vacation.

11 paid holidays

Paid sick leave: 72 hours of paid sick leave upon date of hire. Refreshes each calendar year. Unused balance will carry over each year up to a maximum cap of 112 hours.

Paid parental leave

Adoption assistance

Employee Stock Purchase Plan

Financial planning and group legal

Voluntary benefits including auto, homeowner and pet insurance