114 applicants

Company

Original Job Post

Experian · 2 days ago

Threat Detection Lead, Security Operations

United States

Full-time

Remote

Senior Level

$107K/yr - $193K/yr

5+ years exp

Wonder how qualified you are to the job?

Maximize your interview chances

AnalyticsBig Data

H1B Sponsorship

Growth Opportunities

Insider Connection @Experian

Discover valuable connections within the company who might provide insights and potential referrals, giving your job application an inside edge.

Responsibilities

Provide leadership to level 1 analysts, including feedback on quality of work, driving case quality

Collaborate with external teams for incident resolution and escalations, ensuring questions from Experian users are answered promptly

Support the strategic plans and projects that drive the overall Information Security goals

Track tactical issues in the execution of CFC responsibilities and report to management any issues that could affect the CFC

Provide recommendations for security tools resulting in increased security posture or fidelity rate efficiency

Author and maintain Standard Operating Procedures (SOPs) and training documentation to include improvements and evergreen process

Assist management with responding to audit questions by providing evidence of processes and procedures

Assist the Cyber Threat Intelligence (CTI) and content development teams on use case development by suggesting enhancements or new use cases to improve the security posture of Experian

Participate in proof-of-concept projects with the security engineering team to ensure the CFC is adequately represented

Respond and support the Tier 1 team; perform in-depth analysis on escalated events, provide severity rating, initiate the major incident response process as needed, and document actions taken. Explain the event's history, status, and potential impact for further action following our cyber incident response plan

Coordinate with enterprise-wide cyber defense staff to validate security control alerts

Perform cyber defense trend analysis and reporting

Plan and recommend modifications or adjustments based on exercise results or system environment

Provide cybersecurity recommendations to leadership based on threats and vulnerabilities

Monitor the environment longitudinally for long-term pattern detection

Organize quarterly tabletop exercises with the team

Review, approve, and share new content information within SLAs

Maintain scheduling and shifts to ensure 24x7x365 coverage

Qualification

Find out how your skills align with this job's requirements. If anything seems off, you can easily click on the tags to select or unselect skills to reflect your actual expertise.

Threat DetectionSecurity OperationsIncident ResponsePacket AnalysisForensic AnalysisData FusionScriptingAutomationSystem AdministrationNetwork ForensicsEvent ManagementNetwork InfrastructureVulnerability AssessmentPenetration TestingMalware AnalysisReverse EngineeringNetwork SecurityHost SecurityFirewallsIDS/IPSSIEMUEBADLPProblem-SolvingCommunicationTeamworkTrainingComptiaGIACCISSP

Required

5+ years' experience in threat detection or security operations and response roles

Demonstrate expert technical skills that are needed to defend the enterprise environment, such as: In-depth packet analysis skills, core forensic familiarity, incident response skills, and data fusion skills based on multiple security data sources, Scripting and automation, System administration on Unix, Linux, or Windows, Network forensics, logging, and event management, Defensive network infrastructure (operations or engineering), Vulnerability assessment and penetration testing concepts, Malware analysis concepts, techniques, and reverse engineering

In-depth knowledge of network and host security technologies and products (such as firewalls, network IDS, scanners)

Security monitoring technologies, such as SIEM, IPS/IDS, UEBA, DLP, among others

Demonstrated ability to work in a team environment and able to train and coach other team members

Excellent verbal and written communications skills and ability to produce security incident reports and briefings to both technical and non-technical audiences

Able to work on a 12x7 shift rotating schedule

Preferred

Relevant technical and industry certifications are a plus, e.g. Comptia, GIAC certifications, CISSP, OSCP, or SIEM vendor-specific certifications

Benefits

20 days of vacation accrued annually

Five sick days

Two volunteer days (plus twelve paid holidays)

Comprehensive benefits package with a bonus target of 15%

100% remote long-term work option or office work

People-focused culture prioritizing personal and professional growth

Recognition and celebration of performance and achievements

Employee Resource Groups promoting diversity and inclusion

International network of peers and mentorship programs

Company

Experian

Glassdoor

4.3

Experian is a data analytics and consumer credit reporting company.

Founded in 1980

Dublin, Dublin, IRL

10,001+ employees

http://www.experianplc.com

H1B Sponsorship

Experian has a track record of offering H1B sponsorships. Please note that this does not guarantee sponsorship for this specific role. Below presents additional info for your reference. (Data Powered by US Department of Labor)

Distribution of Different Job Fields Receiving Sponsorship

Trends of Total Sponsorships

2023 (9)

2022 (15)

2021 (19)

2020 (21)