Sr. Incident Response Analyst @ Valvoline Inc. | Jobright.ai
JOBSarrow
RecommendedLiked
0
Applied
0
External
0
Sr. Incident Response Analyst jobs in Kentucky, United States
89 applicants
company-logo

Valvoline Inc. · 15 hours ago

Sr. Incident Response Analyst

positionKentucky, United States
timeFull-time
remoteRemote
senioritySenior Level
date6+ years exp
ftfMaximize your interview chances
AutomotiveLogistics
badNo H1Bnote
Hiring Manager
Lisa Dassell
linkedin

Insider Connection @Valvoline Inc.

Discover valuable connections within the company who might provide insights and potential referrals.
Get 3x more responses when you reach out via email instead of LinkedIn.

Responsibilities

Perform third-tier alert queue monitoring. Record and capture alert timelines for accurate reporting.
Parse event logs generated by endpoint detection and response tools and technologies (anti-virus, data loss prevention, client-based web proxy, firewall, IDS) to detect anomalies and/or abnormalities.
Proactively seek out new or enhanced data enrichment sources for SOAR to ensure the accurate disposition of alerts.
Generate new SOAR use case scenarios in response to changing business requirements and evolving threat landscape.
Maintain familiarity with all Valvoline security policies, procedures, and standards. Investigate and resolve security violations by providing postmortem analysis to illuminate the issues and possible solutions.
Implement or coordinate remediation required by audits and reviews, and document exceptions as necessary.
Participate in security investigations and compliance reviews, as requested by internal or external auditors.
Lead projects that have a CSIRT touchpoint, ensuring project tasks are completed on time and Incident response capabilities are maintained or enhanced.
Analyze network and firewall logs to identify patterns, anomalies, and security threats.
Deploy, configure, and maintain IDS/IPS platforms such as Rapid7 or similar tools.
Review security baselines of all CSIRT tools to ensure critical configuration settings are maintained and operational.
Write, tune, and maintain custom IDS (and other rules) to enhance detection capabilities in our SIEM platform.
Lead or support technical response and root cause analysis to security-related events.
Represent Cyber Security and support IT in Disaster Recovery planning and implementation including tabletops.
Other duties and responsibilities as determined by Valvoline from time to time in its sole discretion.

Qualification

Find out how your skills align with this job's requirements. If anything seems off, you can easily click on the tags to select or unselect skills to reflect your actual expertise.

Security Incident ManagementSOARSIEM SplunkSIEM Elastic StackEndpoint DetectionResponseIntrusion DetectionPreventionCISSPCISMCEHSecurity+CCNACCNPCCNESANSVulnerability ManagementNetwork TechnologiesEmail TechnologiesScripting PythonScripting PowerShellScripting HTMLNetwork Sensor AdministrationAccess ManagementOperating Systems WindowsOperating Systems LinuxNIST

Required

Bachelor's degree in IT, engineering, business, management, or a related field, or equivalent work experience
Minimum of six years of technology experience, including troubleshooting and performing root cause analysis of complex IT solutions
Advanced experience with SOAR
Advanced experience with SEIM (Splunk, Elastic Stack)
Advanced experience with Endpoint Detection and Response (Forensics, Tools, and Technologies, etc.), Intrusion Detection and Prevention, and Packet Capture and Analysis
Advanced experience with Email Technologies (Spam Filters, Headers, Phishing, etc.) and Network Technologies (TCIP/IP, Basic Routing, DNS, etc.)
Advanced experience with Scripting (Python, PowerShell, HTML)
Advanced experience with Network Sensor administration
Advanced experience with Identity and Access Management Concepts (SSO, MFA, etc.)
Advanced experience with Operating Systems (Microsoft Windows and Linux)
Advanced analytical and problem-solving skills to enable effective security incident and problem resolution
Advanced team-oriented interpersonal skills, with the ability to interface effectively with a broad range of people and roles, including vendors and IT business personnel
Advanced verbal and written communication skills; ability to work with integrity and maturity on confidential information
Must be authorized to work in the U.S.

Preferred

Minimum of six years of experience in security incident management processes and tools preferred
Any of CISSP, CISM, CEH, Security+, Network+, CCNA, CCNP, CCNE, SANS preferred
Experience with NIST preferred
Experience with Vulnerability Management a plus

Benefits

Health insurance plans (medical, dental, vision)
HSA and flexible spending accounts
401(k)
Incentive opportunity
Life insurance
Short and long-term disability insurance
Paid vacation and holidays
Employee Assistance Program
Valvoline Instant Oil Change discounts
Tuition reimbursement
Adoption assistance

Company

Valvoline Inc.

twittertwittertwitter
company-logo
Valvoline Inc., the quick, easy, trusted name in preventive vehicle maintenance, leads the industry with automotive service innovations that simplify consumers lives and take the worry out of vehicle care.
dateFounded in 1866
location
Lexington, Kentucky, USA
people-size10001+ employees
web-link
http://www.valvoline.com

Funding

Current Stage
Public Company
Total Funding
unknown
2016-09-23IPO

Leadership Team

leader-logo
Lori Flees
Chief Executive Officer
linkedin
leader-logo
Ipshita Chowdhury
Chief Marketing Officer
linkedin

Recent News

PR Newswire
On Nov. 1, Valvoline Inc. Kicks Off 15 Years of Supporting Children's Miracle Network Hospitals®
2024-11-01
PRNewswire
Valvoline Instant Oil Change Ranks 40th in Franchise Times Top 400
2024-10-21
SeekingAlpha
Valvoline CFO to retire, company begins search for a successor
2024-10-18
Company data provided by crunchbase
logo

Orion

Your AI Copilot