Cyber Incident Response Lead - Advanced Response Team (Remote)
- United States
- Information Technology & Systems
- Permanent
- Hybrid
- Full Time
- $129,232 - $232,617
As a member of Experian's Global Security Office (EGSO)/Cyber Fusion Center (CFC), you will respond, contain, escalate, investigate, and coordinate mitigation of security events relative to anomalies detected and escalated by the Cyber Fusion Center according to Experian's Incident Response Plan. As an individual contributor, this team member will join a new, growing team of specialized, advanced responders to support escalations of complex and prioritized matters from Experian's existing 24x7 security monitoring and response functions, responsible for responding to and analyzing security incidents involving threats targeting Experian information assets. You will work with end-users, technical support teams, and management to ensure remediation and recovery from these threats.
You will report to the Senior Manager, Global Incident Response.
You'll have the opportunity to:
- Conduct advanced incident response activities to investigate and contain complex or larger-scale cybersecurity matters.
- Orchestrate workstreams across teams (Forensics and Cyber Threat Hunting) and explain the CFC's overall understanding of the timeline of attacker activity so that appropriate containment and remediation actions can be coordinated.
- Respond to cyber security events and alerts associated with threats, intrusions, or compromises per any applicable SLOs.
- Manage multiple cases related to security incidents throughout the incident response lifecycle, including Analysis, Containment, Eradication, Recovery, and Lessons Learned.
- Coordinate successful conclusion of security incidents according to Process & Procedures, and escalate severe incidents according to Experian's Incident Response Plan.
- Maintain case documentation, including notes, analysis findings, containment steps, and cause for each assigned security incident.
- Maintain assigned caseload and move incidents through each phase of the IR Lifecycle, handing off cases as needed for progress.
- Maintain an understanding of common Operating Systems (Windows, Linux, Mac OS), Security Technologies (Anti-Virus, Intrusion Prevention), and Networking (Firewalls, Proxies).
- Interpret device and application logs from a variety of sources (Firewalls, Proxies, Web Servers, System Logs, Splunk, Packet Captures) to identify the root cause and determine the next steps for containment, eradication, and recovery.
- Mentor and provide advanced support to analysts (Logs review, IP Block question).
- Support overall direction for the CFC and input to the security strategy.
Experian is a global data and technology company, powering opportunities for people and businesses around the world. We help to redefine lending practices, uncover and prevent fraud, simplify healthcare, create marketing solutions, and gain deeper insights into the automotive market, all using our unique combination of data, analytics and software. We also assist millions of people to realise their financial goals and help them save time and money.
We operate across a range of markets, from financial services to healthcare, automotive, agribusiness, insurance, and many more industry segments.
We invest in people and new advanced technologies to unlock the power of data. As a FTSE 100 Index company listed on the London Stock Exchange (EXPN), we have a team of 22,500 people across 32 countries. Our corporate headquarters are in Dublin, Ireland. Learn more at experianplc.com
Your background:
- Bachelor's Degree in Computer Science, Computer Engineering, Information Security, or a related field, or 8+ years of experience working within Security Operations Centers or Cyber Security Incident Response Teams.
- Demonstrated knowledge of Incident Response and Investigative Methodology.
- Must have knowledge of network protocols (TCP/IP, UDP, ICMP), standard protocols (HTTP/S, DNS, SSH, SMTP, SMB), wireless networking, networking infrastructure, and network topologies (DMZ, VPN, WAN) and network technologies (WAF, IPS, Routers, Firewalls).
- Experience with commercial and open-source SIEMs, full packet capture tools, and network analysis tools (Splunk, Wireshark, SOF-ELK).
- Exhibit skills using common Incident Response and Security Monitoring applications such as SIEM (Splunk), EDR (FireEye HX, CrowdStrike Falcon, McAfee mVision EDR), WAF, IPS.
- Demonstrated knowledge of common intrusion methods and cyber-attack tactics, techniques, and procedures (TTPs).
- Have at least one certification involving incident response, ethical hacking, cyber security (GCIH, E CEH, E CIH), or network forensics (GIAC Network Forensic Analyst (GNFA), NICCS Certified Network Forensics Examiner (CNFE)).
- Hold one Security Management certification (ISC2 CISSP, CISM) or obtain such certification within the first two years as a Cyber Incident Response Lead.
- This role has a regular Monday – Friday schedule, with the expectation to participate in an on-call schedule or work outside of normal work hours to respond to cybersecurity incidents.
Benefits/Perks:
- Great compensation package and bonus plan.
- Core benefits including medical, dental, vision, and matching 401K.
- Flexible work environment, ability to work remote, hybrid or in-office.
- Flexible time off including volunteer time off, vacation, sick and 12-paid holidays.
Our uniqueness is that we celebrate yours. Experian's culture and people are important differentiators. We take our people agenda very seriously and focus on what matters; DEI, work/life balance, development, authenticity, engagement, collaboration, wellness, reward & recognition, volunteering... the list goes on. Experian's people first approach is award-winning; Great Place To Work™ in 24 countries, FORTUNE Best Companies to work and Glassdoor Best Places to Work (globally 4.4 Stars) to name a few. Check out Experian Life on social or our Careers Site to understand why.
Experian is proud to be an Equal Opportunity and Affirmative Action employer. Innovation is an important part of Experian's DNA and practices, and our diverse workforce drives our success. Everyone can succeed at Experian and bring their whole self to work, irrespective of their gender, ethnicity, religion, colour, sexuality, physical ability or age. If you have a disability or special need that requires accommodation, please let us know at the earliest opportunity.
#LI-Remote
This is a remote position.
Explore Experian's award winning 'people first' culture.
Being part of Experian is exciting. Every day brings new challenges, new opportunities, new ways for us to do what we do best: using our innovative technologies and data to work in new and surprising ways. All brought together in a single thought: Discover the Unexpected.
Learn moreRecommended Jobs
Salary
Location
Southbank, Australia
Experience Level
Not Applicable
Employment
Permanent
Location
Southbank
Role Type
Hybrid
Schedule
Full Time
Department
Sales & Business Development
Brand
Experian
Remote working available
No
Description
Job Summary: Experian Marketing Services (EMS) is a global leader in providing data-driven marketing solutions. We manage large and comprehensive databases to better understand Australian consumers, l
Reference
bdb7bbd1-66a7-42b9-8d9a-d85c6aa3b589
Expiry Date
01/01/0001
Salary
Location
Heredia, Costa Rica
Experience Level
Not Applicable
Employment
Permanent
Location
Heredia
Role Type
Hybrid
Schedule
Full Time
Department
Finance
Brand
Experian
Remote working available
Yes
Description
SummaryAs the Billing Administrator for Experian, you will compile, manage, and use billing data, contract provisions, and pricing constructs across multiple systems to support client billing and invo
Reference
174cf575-eee9-4269-a513-62732a2dea4a
Expiry Date
01/01/0001
Salary
Location
Panamá Pacífico, Panama
Experience Level
Not Applicable
Employment
Permanent
Location
Panamá Pacífico
Role Type
Hybrid
Schedule
Full Time
Department
Finance
Brand
Experian
Remote working available
No
Description
Descripción del trabajo Descripción general del áreaLa misión principal del área es cumplir con los requerimientos requeridos por FP&A para completar información y analisis financieros para la toma de
Reference
0720fe39-e741-4ace-ac55-7bfe6940c55f
Expiry Date
01/01/0001
Salary
Location
Bogotá, Colombia
Experience Level
Not Applicable
Employment
Permanent
Location
Bogota
Role Type
Hub
Schedule
Full Time
Department
Customer Service
Brand
Experian
Remote working available
No
Description
Descripción del rolEl Analista Junior es responsable por el desarrollo y pruebas de calidad para entrega de pruebas internas de los componentes de software, cumpliendo con los criterios de aceptación
Reference
972e4608-88b2-431d-9ee3-4778c28ae562
Expiry Date
01/01/0001
Salary
Location
São Paulo, Brazil
Experience Level
Not Applicable
Employment
Permanent
Location
Sao Paulo
Role Type
Hybrid
Schedule
Full Time
Department
Product Development
Brand
Serasa Experian
Remote working available
No
Description
Estamos em busca de um Desenvolvedor Java Sênior altamente qualificado para integrar nosso time de tecnologia. O profissional será responsável por desenvolver e manter aplicações robustas, escaláveis
Reference
695648d8-2dbf-4964-841d-29fc75ad3b78
Expiry Date
01/01/0001
Salary
Location
São Paulo, Brazil
Experience Level
Not Applicable
Employment
Permanent
Location
Sao Paulo
Role Type
Hybrid
Schedule
Full Time
Department
Product Management
Brand
Serasa Experian
Remote working available
No
Description
Estamos em busca de um Gerente de Produtos altamente motivado e inovador para integrar nossa equipe. Esta posição é estratégica e fundamental para o sucesso de nossos projetos. O candidato ideal deve
Reference
bda07010-e152-4e63-b8b1-eb00a3f01346
Expiry Date
01/01/0001
Salary
Location
United States
Experience Level
Mid-Senior Level
Employment
Permanent
Location
United States
Role Type
Home
Salary Range
$87,248 - $151,230
Schedule
Full Time
Department
Customer Service
Brand
Experian
Remote working available
Yes
Description
Within Experian Health, the Trading Partner Relationship Manager will manage the daily operations for a portfolio of large strategic partnerships, developing deep subject matter expertise for each rel
Reference
95a7b49c-b8b7-44c0-9d26-38d447b2324a
Expiry Date
01/01/0001
Salary
Location
São Paulo, Brazil
Experience Level
Not Applicable
Employment
Permanent
Location
Sao Paulo
Role Type
Hybrid
Schedule
Full Time
Department
Data Management
Brand
Serasa Experian
Remote working available
No
Description
Se você é 100% orientado por receita, tem paixão por dados e inteligência artificial. Além disso sabe transformar insights em impacto real, essa vaga é para você!O que Buscamos?Procuramos um líder est
Reference
008256c2-0352-467d-8de2-a081839526ad
Expiry Date
01/01/0001
Salary
Location
São Carlos, Brazil
Experience Level
Not Applicable
Employment
Permanent
Location
Sao Carlo
Role Type
Hub
Schedule
Full Time
Department
Facilities
Brand
Serasa Experian
Remote working available
No
Description
Área: FinanceSubárea: FacilitiesEsse assistente irá atuar na parte operacional de distribuição interna e recebimento, distribuição de bens, materiais, periféricos de TI, notebooks, itens de coffee bre
Reference
e2bf9567-a073-4782-a3ce-174763ae321c
Expiry Date
01/01/0001
Salary
Location
São Paulo, Brazil
Experience Level
Not Applicable
Employment
Permanent
Location
Sao Paulo
Role Type
Hybrid
Schedule
Full Time
Department
Sales & Business Development
Brand
Serasa Experian
Remote working available
No
Description
Desenvolver e implementar estratégias comerciais orientadas por análises de dados para maximizar o potencial de receita.Conduzir negociações com potenciais clientes e parceiros, estabelecendo relacion
Reference
61919a92-f697-4d71-a073-e03d7f302d58
Expiry Date
01/01/0001
Salary
Location
São Paulo, Brazil
Experience Level
Not Applicable
Employment
Permanent
Location
Sao Paulo
Role Type
Hybrid
Schedule
Full Time
Department
Sales & Business Development
Brand
Serasa Experian
Remote working available
No
Description
Desenvolver e implementar estratégias comerciais orientadas por análises de dados para maximizar o potencial de receita.Conduzir negociações com potenciais clientes e parceiros, estabelecendo relacion
Reference
43d987b9-1059-4534-ba4d-8488f4c91ed7
Expiry Date
01/01/0001
Salary
Location
São Paulo, Brazil
Experience Level
Not Applicable
Employment
Permanent
Location
Sao Paulo
Role Type
Hybrid
Schedule
Full Time
Department
Information Technology & Systems
Brand
PagueVeloz
Remote working available
No
Description
Expectativas técnicasExperiência com gestão de pessoas e coordenação de equipe;Habilidade no desenvolvimento profissional de pessoas;Habilidades de comunicação e reports;Experiência com cloud (especia
Reference
df4d7815-e38e-4e29-8fb6-1c60bca35f30
Expiry Date
01/01/0001
Salary
Location
Hyderabad, India
Experience Level
Not Applicable
Employment
Permanent
Location
Hyderabad
Role Type
Hybrid
Schedule
Full Time
Department
Product Development
Brand
Experian
Remote working available
No
Description
We are looking for FE Sr Software Engineer who is responsible for designing, developing, building, testing, and deploying web tier applications along with AWS technologies background to work with our
Reference
b2f40972-fa1a-4faf-b70a-7531308dfa61
Expiry Date
01/01/0001
Salary
Location
São Paulo, Brazil
Experience Level
Not Applicable
Employment
Permanent
Location
Sao Paulo
Role Type
Home
Schedule
Full Time
Department
Analytics
Brand
Serasa Experian
Remote working available
No
Description
Estamos em busca de uma pessoa Engenheira de Machine Learning para integrar a nosso time de MLOps. Nossa missão é desenvolver ferramentas e processos que impulsionem a inovação e otimizem a operação
Reference
ad840fad-8704-46e9-a627-19cb7babb425
Expiry Date
01/01/0001
Salary
Location
Brasília, Brazil
Experience Level
Not Applicable
Employment
Permanent
Location
Brasilia
Role Type
Hub
Schedule
Part Time
Department
Sales & Business Development
Brand
Serasa Experian
Remote working available
No
Description
Área: Id & FraudSubárea: AntifraudeTURNO: MadrugadaRealizar análise documental de acordo com as instruções fornecidas nos manuais de treinamento;Manter-se atualizado dos procedimentos e processos da á
Reference
96c15f58-359d-4b20-b835-6b02e12db870
Expiry Date
01/01/0001
Salary
Location
São Paulo, Brazil
Experience Level
Not Applicable
Employment
Permanent
Location
Sao Paulo
Role Type
Hybrid
Schedule
Full Time
Department
Product Development
Brand
Serasa Experian
Remote working available
No
Description
Estamos em busca de um Desenvolvedor(a) Backend Python talentoso e motivado para se juntar à nossa equipe. O candidato ideal terá experiência em desenvolvimento de chatbots e será responsável por cria
Reference
f0732d13-264c-4a24-8b8b-2077e6fec9b2
Expiry Date
01/01/0001