Cyber Incident Response Lead - Advanced Response Team (Remote)
- United States
- Information Technology & Systems
- Permanent
- Hybrid
- Full Time
- $133,109 - $239,596
As a member of Experian's Global Security Office (EGSO)/Cyber Fusion Center (CFC), you will respond, contain, escalate, investigate, and coordinate mitigation of security events relative to anomalies detected and escalated by the Cyber Fusion Center according to Experian's Incident Response Plan. As an individual contributor, this team member will join a new, growing team of specialized, advanced responders to support escalations of complex and prioritized matters from Experian's existing 24x7 security monitoring and response functions, responsible for responding to and analyzing security incidents involving threats targeting Experian information assets. You will work with end-users, technical support teams, and management to ensure remediation and recovery from these threats.
You will report to the Senior Manager, Global Incident Response.
Responsibilities:
- Conduct advanced incident response activities to investigate and contain complex or larger-scale cybersecurity matters.
- Orchestrate workstreams across teams (Forensics and Cyber Threat Hunting) and explain the CFC's overall understanding of the timeline of attacker activity so that appropriate containment and remediation actions can be coordinated.
- Respond to cyber security events and alerts associated with threats, intrusions, or compromises per any applicable SLOs.
- Manage multiple cases related to security incidents throughout the incident response lifecycle, including Analysis, Containment, Eradication, Recovery, and Lessons Learned.
- Coordinate successful conclusion of security incidents according to Process & Procedures, and escalate severe incidents according to Experian's Incident Response Plan.
- Maintain case documentation, including notes, analysis findings, containment steps, and cause for each assigned security incident.
- Maintain assigned caseload and move incidents through each phase of the IR Lifecycle, handing off cases as needed for progress.
- Maintain an understanding of common Operating Systems (Windows, Linux, Mac OS), Security Technologies (Anti-Virus, Intrusion Prevention), and Networking (Firewalls, Proxies).
- Interpret device and application logs from a variety of sources (Firewalls, Proxies, Web Servers, System Logs, Splunk, Packet Captures) to identify the root cause and determine the next steps for containment, eradication, and recovery.
- Mentor and provide advanced support to analysts (Logs review, IP Block question).
- Support overall direction for the CFC and input to the security strategy.
Experian is a global data and technology company, powering opportunities for people and businesses around the world. We help to redefine lending practices, uncover and prevent fraud, simplify healthcare, create marketing solutions, and gain deeper insights into the automotive market, all using our unique combination of data, analytics and software. We also assist millions of people to realise their financial goals and help them save time and money.
We operate across a range of markets, from financial services to healthcare, automotive, agribusiness, insurance, and many more industry segments.
We invest in people and new advanced technologies to unlock the power of data. As a FTSE 100 Index company listed on the London Stock Exchange (EXPN), we have a team of 22,500 people across 32 countries. Our corporate headquarters are in Dublin, Ireland. Learn more at experianplc.com
Your background:
- Bachelor's Degree in Computer Science, Computer Engineering, Information Security, or a related field, or 8+ years of experience working within Security Operations Centers or Cyber Security Incident Response Teams.
- Demonstrated knowledge of Incident Response and Investigative Methodology.
- Must have knowledge of network protocols (TCP/IP, UDP, ICMP), standard protocols (HTTP/S, DNS, SSH, SMTP, SMB), wireless networking, networking infrastructure, and network topologies (DMZ, VPN, WAN) and network technologies (WAF, IPS, Routers, Firewalls).
- Experience with commercial and open-source SIEMs, full packet capture tools, and network analysis tools (Splunk, Wireshark, SOF-ELK).
- Exhibit skills using common Incident Response and Security Monitoring applications such as SIEM (Splunk), EDR (FireEye HX, CrowdStrike Falcon, McAfee mVision EDR), WAF, IPS.
- Demonstrated knowledge of common intrusion methods and cyber-attack tactics, techniques, and procedures (TTPs).
- Have at least one certification involving incident response, ethical hacking, cyber security (GCIH, E CEH, E CIH), or network forensics (GIAC Network Forensic Analyst (GNFA), NICCS Certified Network Forensics Examiner (CNFE)).
- Hold one Security Management certification (ISC2 CISSP, CISM) or obtain such certification within the first two years as a Cyber Incident Response Lead.
- This role has a regular Monday – Friday schedule, with the expectation to participate in an on-call schedule or work outside of normal work hours to respond to cybersecurity incidents.
Benefits/Perks:
- Great compensation package and bonus plan.
- Core benefits including medical, dental, vision, and matching 401K.
- Flexible work environment, ability to work remote, hybrid or in-office.
- Flexible time off including volunteer time off, vacation, sick and 12-paid holidays.
Our uniqueness is that we celebrate yours. Experian's culture and people are important differentiators. We take our people agenda very seriously and focus on what matters; DEI, work/life balance, development, authenticity, collaboration, wellness, reward & recognition, volunteering... the list goes on. Experian's people first approach is award-winning; World's Best Workplaces™ 2024 (Fortune Top 25), Great Place To Work™ in 24 countries, and Glassdoor Best Places to Work 2024 to name a few. Check out Experian Life on social or our Careers Site to understand why.
Our compensation reflects the cost of labor across several U.S. geographic markets. The base pay range for this position is listed above. Within this range, individual pay is determined by work location and additional factors such as job-related skills, experience, and education. This position is also eligible for a variable pay opportunity and a comprehensive benefits package.
Experian is proud to be an Equal Opportunity Employer for all groups protected under applicable federal, state and local law, including protected veterans and individuals with disabilities. Innovation is an important part of Experian's DNA and practices, and our inclusive workforce allows everyone to succeed and bring their whole self to work. If you have a disability or special need that requires accommodation, please let us know at the earliest opportunity.
#LI-Remote
This is a remote position.
Explore Experian's award winning 'people first' culture.
Being part of Experian is exciting. Every day brings new challenges, new opportunities, new ways for us to do what we do best: using our innovative technologies and data to work in new and surprising ways. All brought together in a single thought: Discover the Unexpected.
Learn moreRecommended Jobs
Salary
Location
São Paulo, Brazil
Experience Level
Not Applicable
Employment
Permanent
Location
Sao Paulo
Role Type
Home
Schedule
Full Time
Department
Analytics
Brand
Serasa Experian
Remote working available
No
Description
Realizar estudos para buscar oportunidades de otimização e melhoria nos produtos com estudos estatísticos;Modelagem preditiva para o crescimento da performance e receita dos produtos;Auxiliar e desenv
Reference
ad840fad-8704-46e9-a627-19cb7babb425
Expiry Date
01/01/0001
Salary
Location
Blumenau, Brazil
Experience Level
Not Applicable
Employment
Permanent
Location
Blumenau
Role Type
Home
Schedule
Full Time
Department
Product Development
Brand
PagueVeloz
Remote working available
No
Description
O que estamos buscando em você:Experiência na plataforma .NET e na linguagem C#;Experiência em desenvolvimento de aplicações backend;Conhecer o padrão REST e ter experiência na construção da APIs;Banc
Reference
23cde90d-fd90-42ba-b572-b874039274c0
Expiry Date
01/01/0001
Salary
Location
Nottingham, England
Experience Level
Not Applicable
Employment
Permanent
Location
Nottingham
Role Type
Hybrid
Schedule
Full Time
Department
Customer Service
Brand
Experian
Remote working available
No
Description
Be Part of Something Meaningful at ExperianWe're looking for a Onboarding & Client Relationship Specialist to join our Background Checking team, based in our Nottingham office, reporting into the Serv
Reference
46afe062-34fb-432e-9697-b6289ddf1549
Expiry Date
01/01/0001
Salary
Location
São Paulo, Brazil
Experience Level
Not Applicable
Employment
Permanent
Location
Sao Paulo
Role Type
Hybrid
Schedule
Full Time
Department
Product Management
Brand
Serasa Experian
Remote working available
No
Description
🎯 Estamos em busca de um(a) Especialista em Produtos e Parcerias Estratégicas que seja apaixonado(a) por produtos digitais para nos apoiar no gerenciamento de parcerias estratégicas e desenvolvimento
Reference
3f53dea4-fa40-4070-b60f-0e14903d6e76
Expiry Date
01/01/0001
Salary
Location
Hyderabad, India
Experience Level
Not Applicable
Employment
Permanent
Location
Hyderabad
Role Type
Hybrid
Schedule
Full Time
Department
Product Development
Brand
Experian
Remote working available
No
Description
Job description JOB DESCRIPTION | QA Automation Engineer About us, but we'll be brief Experian is the world's leading global information services company, unlocking the power of data to create more op
Reference
2a8a84e6-c4b4-4eb8-827b-35eea8b2e5e0
Expiry Date
01/01/0001
Salary
Location
Hyderabad, India
Experience Level
Not Applicable
Employment
Permanent
Location
Hyderabad
Role Type
Hybrid
Schedule
Full Time
Department
Product Development
Brand
Experian
Remote working available
No
Description
Job Description Seeking a talented API/Backend developer to help build new microservices and applications for upcoming projects as well as enhance and support the current platform and infrastructure.
Reference
62274adb-a7dc-4f06-8855-aadfa27737fc
Expiry Date
01/01/0001
Salary
Location
Hyderabad, India
Experience Level
Not Applicable
Employment
Permanent
Location
Hyderabad
Role Type
Hybrid
Schedule
Full Time
Department
Information Technology & Systems
Brand
Experian
Remote working available
No
Description
Description and Responsibilities You will be #LI-hybrid based in Hyderabad and reporting to your manager.This is individual contributor (Non-Managerial) roleParticipate in creation/evolution of the au
Reference
837bcdd5-83b8-4af9-a327-8355e4aa10f4
Expiry Date
01/01/0001
Salary
Location
Cyberjaya, Malaysia
Experience Level
Not Applicable
Employment
Permanent
Location
Cyberjaya
Role Type
Hybrid
Schedule
Full Time
Department
Finance
Brand
Experian
Remote working available
No
Description
Role Summary:You will be an important member of the Bulgaria-based finance team with a global remit within Global Finance. You will support both the Global Finance Service (GFS) Measurement Reporting
Reference
693def1c-c65c-4b7d-9c0c-88ff82c26981
Expiry Date
01/01/0001
Salary
Location
United States
Experience Level
Associate
Employment
Permanent
Location
United States
Role Type
Home
Salary Range
See Pay Range
Schedule
Full Time
Department
Sales & Business Development
Brand
Experian
Remote working available
Yes
Description
Our team, culture and people are what help set us apart and the main reason why we continue to be named to the Forbes 100 most innovative companies for the last five years.Our Sales Account Executives
Reference
c1188603-3210-4711-bbb2-9922cebee3dd
Expiry Date
01/01/0001
Salary
Location
São Paulo, Brazil
Experience Level
Not Applicable
Employment
Permanent
Location
Sao Paulo
Role Type
Hybrid
Schedule
Full Time
Department
Legal & Compliance
Brand
Serasa Experian
Remote working available
No
Description
Apoio Multidisciplinar:Suporte jurídico ao time técnico de governança de dados, traduzindo requisitos legais em diretrizes operacionais.Colaboração com o time jurídico consultivo de produtos, avaliand
Reference
8fd84eb5-35f2-4955-83af-0e6f7da51748
Expiry Date
01/01/0001
Salary
Location
São Paulo, Brazil
Experience Level
Not Applicable
Employment
Permanent
Location
Sao Paulo
Role Type
Hybrid
Schedule
Full Time
Department
Human Resources
Brand
Serasa Experian
Remote working available
No
Description
🎯 Estamos em busca de um(a) Especialista para atuar em nosso time de HRBP que queira atuar como agente de transformação junto aos nossos líderes em suas frentes de negócio, influenciando no desenvolv
Reference
2b16e38e-c41b-4ba0-8bcb-66665c5be334
Expiry Date
01/01/0001
Salary
Location
Heredia , Costa Rica
Experience Level
Not Applicable
Employment
Permanent
Location
Heredia
Role Type
Home
Schedule
Full Time
Department
Sales & Business Development
Brand
Experian
Remote working available
No
Description
The Sales Operations Manager will help lead an operations team in Costa Rica. This individual will work closely with the Sales Operations Team Supervisors, Sales Operations Manager, as well to ensure
Reference
8da7fbaf-a3df-46b2-acb9-d9944f671955
Expiry Date
01/01/0001
Salary
Location
California, United States
Experience Level
Not Applicable
Employment
Permanent
Location
California
Role Type
Hybrid
Salary Range
$115,747 - $208,344
Schedule
Full Time
Department
Product Management
Brand
Experian
Remote working available
Yes
Description
Product Managers at Experian have a passion for creating innovative, empowering, client centric products for some of the largest financial institutions in North America. Our focus is on delivering fin
Reference
d3e875d5-0169-485f-abac-88b24c687d97
Expiry Date
01/01/0001
Salary
Location
Sofia, Bulgaria
Experience Level
Mid-Senior Level
Employment
Permanent
Location
Sofia
Role Type
Hybrid
Schedule
Full Time
Department
Project Management
Brand
Experian
Remote working available
No
Description
The Senior Project Manager will manage one or more business critical projects /programmes. In this role you will predominantly deliver infrastructure projects/ programmes, driving technology transform
Reference
01a8db09-930e-4de6-acb1-7142ebce0ecb
Expiry Date
01/01/0001
Salary
Location
Hyderabad, India
Experience Level
Not Applicable
Employment
Permanent
Location
Hyderabad
Role Type
Hybrid
Schedule
Full Time
Department
Information Technology & Systems
Brand
Experian
Remote working available
No
Description
Job description Experian Consumer Services (ECS) is seeking a dynamic Technical Full StackManager to lead high-performing teams comprising iOS, Android, backend, and webdevelopers. The ideal candidate
Reference
ca38979d-a1b3-40b8-84fe-aee3afccd9c7
Expiry Date
01/01/0001
Salary
Location
London, England
Experience Level
Not Applicable
Employment
Permanent
Location
London
Role Type
Hybrid
Schedule
Full Time
Department
Sales & Business Development
Brand
Experian
Remote working available
No
Description
The Crisis & Data Breach Response Services team sits within the Experian Consumer Services (ECS) Division. The propositions provided by the team relate to products and services, paid for by companies
Reference
289d19d1-fe0f-452d-bcc6-dbbfd7fb3ee0
Expiry Date
01/01/0001