Cyber Incident Response Lead - Advanced Response Team (Remote)
- United States
- Information Technology & Systems
- Permanent
- Hybrid
- Full Time
- $133,109 - $239,596
This vacancy has now expired. Please see similar roles below...
As a member of Experian's Global Security Office (EGSO)/Cyber Fusion Center (CFC), you will respond, contain, escalate, investigate, and coordinate mitigation of security events relative to anomalies detected and escalated by the Cyber Fusion Center according to Experian's Incident Response Plan. As an individual contributor, this team member will join a new, growing team of specialized, advanced responders to support escalations of complex and prioritized matters from Experian's existing 24x7 security monitoring and response functions, responsible for responding to and analyzing security incidents involving threats targeting Experian information assets. You will work with end-users, technical support teams, and management to ensure remediation and recovery from these threats.
You will report to the Senior Manager, Global Incident Response.
Responsibilities:
- Conduct advanced incident response activities to investigate and contain complex or larger-scale cybersecurity matters.
- Orchestrate workstreams across teams (Forensics and Cyber Threat Hunting) and explain the CFC's overall understanding of the timeline of attacker activity so that appropriate containment and remediation actions can be coordinated.
- Respond to cyber security events and alerts associated with threats, intrusions, or compromises per any applicable SLOs.
- Manage multiple cases related to security incidents throughout the incident response lifecycle, including Analysis, Containment, Eradication, Recovery, and Lessons Learned.
- Coordinate successful conclusion of security incidents according to Process & Procedures, and escalate severe incidents according to Experian's Incident Response Plan.
- Maintain case documentation, including notes, analysis findings, containment steps, and cause for each assigned security incident.
- Maintain assigned caseload and move incidents through each phase of the IR Lifecycle, handing off cases as needed for progress.
- Maintain an understanding of common Operating Systems (Windows, Linux, Mac OS), Security Technologies (Anti-Virus, Intrusion Prevention), and Networking (Firewalls, Proxies).
- Interpret device and application logs from a variety of sources (Firewalls, Proxies, Web Servers, System Logs, Splunk, Packet Captures) to identify the root cause and determine the next steps for containment, eradication, and recovery.
- Mentor and provide advanced support to analysts (Logs review, IP Block question).
- Support overall direction for the CFC and input to the security strategy.
Experian is a global data and technology company, powering opportunities for people and businesses around the world. We help to redefine lending practices, uncover and prevent fraud, simplify healthcare, create marketing solutions, and gain deeper insights into the automotive market, all using our unique combination of data, analytics and software. We also assist millions of people to realise their financial goals and help them save time and money.
We operate across a range of markets, from financial services to healthcare, automotive, agribusiness, insurance, and many more industry segments.
We invest in people and new advanced technologies to unlock the power of data. As a FTSE 100 Index company listed on the London Stock Exchange (EXPN), we have a team of 22,500 people across 32 countries. Our corporate headquarters are in Dublin, Ireland. Learn more at experianplc.com
Your background:
- Bachelor's Degree in Computer Science, Computer Engineering, Information Security, or a related field, or 8+ years of experience working within Security Operations Centers or Cyber Security Incident Response Teams.
- Demonstrated knowledge of Incident Response and Investigative Methodology.
- Must have knowledge of network protocols (TCP/IP, UDP, ICMP), standard protocols (HTTP/S, DNS, SSH, SMTP, SMB), wireless networking, networking infrastructure, and network topologies (DMZ, VPN, WAN) and network technologies (WAF, IPS, Routers, Firewalls).
- Experience with commercial and open-source SIEMs, full packet capture tools, and network analysis tools (Splunk, Wireshark, SOF-ELK).
- Exhibit skills using common Incident Response and Security Monitoring applications such as SIEM (Splunk), EDR (FireEye HX, CrowdStrike Falcon, McAfee mVision EDR), WAF, IPS.
- Demonstrated knowledge of common intrusion methods and cyber-attack tactics, techniques, and procedures (TTPs).
- Have at least one certification involving incident response, ethical hacking, cyber security (GCIH, E CEH, E CIH), or network forensics (GIAC Network Forensic Analyst (GNFA), NICCS Certified Network Forensics Examiner (CNFE)).
- Hold one Security Management certification (ISC2 CISSP, CISM) or obtain such certification within the first two years as a Cyber Incident Response Lead.
- This role has a regular Monday – Friday schedule, with the expectation to participate in an on-call schedule or work outside of normal work hours to respond to cybersecurity incidents.
Benefits/Perks:
- Great compensation package and bonus plan.
- Core benefits including medical, dental, vision, and matching 401K.
- Flexible work environment, ability to work remote, hybrid or in-office.
- Flexible time off including volunteer time off, vacation, sick and 12-paid holidays.
Our uniqueness is that we celebrate yours. Experian's culture and people are important differentiators. We take our people agenda very seriously and focus on what matters; DEI, work/life balance, development, authenticity, collaboration, wellness, reward & recognition, volunteering... the list goes on. Experian's people first approach is award-winning; World's Best Workplaces™ 2024 (Fortune Top 25), Great Place To Work™ in 24 countries, and Glassdoor Best Places to Work 2024 to name a few. Check out Experian Life on social or our Careers Site to understand why.
Our compensation reflects the cost of labor across several U.S. geographic markets. The base pay range for this position is listed above. Within this range, individual pay is determined by work location and additional factors such as job-related skills, experience, and education. This position is also eligible for a variable pay opportunity and a comprehensive benefits package.
Experian is proud to be an Equal Opportunity Employer for all groups protected under applicable federal, state and local law, including protected veterans and individuals with disabilities. Innovation is an important part of Experian's DNA and practices, and our inclusive workforce allows everyone to succeed and bring their whole self to work. If you have a disability or special need that requires accommodation, please let us know at the earliest opportunity.
#LI-Remote
This is a remote position.
Explore Experian's award winning 'people first' culture.
Being part of Experian is exciting. Every day brings new challenges, new opportunities, new ways for us to do what we do best: using our innovative technologies and data to work in new and surprising ways. All brought together in a single thought: Discover the Unexpected.
Learn moreRecommended Jobs
Salary
Location
United States
Experience Level
Not Applicable
Employment
Permanent
Location
United States
Role Type
Home
Salary Range
$100,649 - $174,459
Schedule
Full Time
Department
Product Development
Brand
Experian
Remote working available
Yes
Description
Experian is looking for an experienced Senior Software Engineer - Java (Cloud-native Java) who can excel in developing and delivering direct-to-customer products on a cloud-native Java platform. You w
Reference
aafa4508-d610-4fde-80f9-c4257718aa20
Expiry Date
01/01/0001
Salary
Location
Heredia, Costa Rica
Experience Level
Not Applicable
Employment
Permanent
Location
Heredia
Role Type
Home
Schedule
Full Time
Department
Legal & Compliance
Brand
Experian
Remote working available
No
Description
Job descriptionVendor Contracts AdministratorThis Vendor Contracts Administrator position will support our Experian Consumer Services and Partner Solutions businesses. The position will provide you th
Reference
41d4f014-40b5-40cf-b80b-c052eaf61446
Expiry Date
01/01/0001
Salary
Location
São Paulo, Brazil
Experience Level
Not Applicable
Employment
Permanent
Location
Sao Paulo
Role Type
Hybrid
Schedule
Full Time
Department
Administration & Office Support
Brand
Serasa Experian
Remote working available
No
Description
Apoiar a Governança de Negócios no que tange a:Apoio à gestão de riscos e issues;Apoio a auditorias internas e realização de assessments internos;Envolvimento no desenvolvimento de novos produtos e se
Reference
df009cf7-a072-4fcb-bea8-982ddde81a55
Expiry Date
01/01/0001
Salary
Location
Nottingham, England
Experience Level
Not Applicable
Employment
Permanent
Location
Nottingham
Role Type
Hybrid
Schedule
Full Time
Department
Product Development
Brand
Experian
Remote working available
No
Description
Experian's Data Office are looking for a Lead Mainframe Developer. You will lead a team of reverse engineers in the analysis and documenting of our existing mainframe ingestion systems, to promote for
Reference
1bd85991-d88c-4356-97da-53d0ca186cde
Expiry Date
01/01/0001
Salary
Location
United States
Experience Level
Associate
Employment
Permanent
Location
United States
Role Type
Home
Salary Range
$71,640 - $124,176
Schedule
Full Time
Department
Sales & Business Development
Brand
Experian
Remote working available
Yes
Description
The Sales Training Specialist will own the creation and delivery of training programs for our AutoCheck product. You will be the primary source of product training across sales channels—providing our
Reference
1216700e-2db1-4c3c-9756-f5d485b4c012
Expiry Date
01/01/0001
Salary
Location
Nottingham, England
Experience Level
Not Applicable
Employment
Permanent
Location
Nottingham
Role Type
Home
Schedule
Full Time
Department
Legal & Compliance
Brand
Experian
Remote working available
Yes
Description
As a Cyber Defence Analyst, you will join the Cyber Fusion Center, performing in-depth analysis, assessment, and response to security threats by following documented policies to meet Service Level Goa
Reference
02312ee5-bcf7-4ac1-8c05-03cc934f38e2
Expiry Date
01/01/0001
Salary
Location
London, England
Experience Level
Not Applicable
Employment
Permanent
Location
London
Role Type
Hybrid
Schedule
Full Time
Department
Product Management
Brand
Experian
Remote working available
No
Description
Experian Software Solutions (ESS) are looking for a dynamic and visionary Product Experience Director to lead our Ascend Technology Platform team.You will be responsible for strategic leadership, over
Reference
a13fec48-f93b-4acf-b170-77b63e3acc27
Expiry Date
01/01/0001
Salary
Location
São Paulo, Brazil
Experience Level
Not Applicable
Employment
Permanent
Location
Sao Paulo
Role Type
Home
Schedule
Full Time
Department
Product Development
Brand
Serasa Experian
Remote working available
No
Description
Desenvolvimento de sistemas backend com Python e FastAPI, integrando serviços externos e bancos de dados relacionais. Participação em squads ágeis com metodologias Scrum e Kanban, contribuindo com cod
Reference
f35c22f9-6cf9-4f44-a746-5a82a80f4812
Expiry Date
01/01/0001
Salary
Location
São Paulo, Brazil
Experience Level
Not Applicable
Employment
Permanent
Location
Sao Paulo
Role Type
Hybrid
Schedule
Full Time
Department
Sales & Business Development
Brand
Serasa Experian
Remote working available
No
Description
Área: PMESubárea: Customer ManagementEstamos em busca de um(a) Analista Júnior de Customer Success para integrar nosso time e atuar com foco em gestão de processos e melhoria contínua. Essa pessoa ser
Reference
ccfec0b8-7f7f-4861-8a46-c5eafd64b720
Expiry Date
01/01/0001
Salary
Location
São Paulo, Brazil
Experience Level
Not Applicable
Employment
Permanent
Location
Sao Paulo
Role Type
Hub
Schedule
Full Time
Department
Sales & Business Development
Brand
Serasa Experian
Remote working available
No
Description
Área: PMESubárea: Inside SalesBuscamos um(a) Analista para atuar como ponte entre nossa célula de vendas especializadas e as áreas de Produto. Essa pessoa será responsável por apoiar o time na apresen
Reference
a59e1156-85f3-4b7e-b41e-d7bcc00b5fee
Expiry Date
01/01/0001
Salary
Location
London, England
Experience Level
Mid-Senior Level
Employment
Permanent
Location
London
Role Type
Hybrid
Schedule
Full Time
Department
Sales & Business Development
Brand
Experian
Remote working available
No
Description
Principal Financial Services Consultant is a key technical advisor and product advocate responsible for positioning and promoting our Aperture Data Studio suite (Data Quality and Data Governance) to e
Reference
92308d2b-fff4-464a-81f6-1d402f77e1df
Expiry Date
01/01/0001
Salary
Location
Kuala Lumpur, Malaysia
Experience Level
Not Applicable
Employment
Permanent
Location
Kuala Lumpur
Role Type
Hybrid
Schedule
Full Time
Department
Customer Service
Brand
Experian
Remote working available
No
Description
Role Summary:We are looking for an Operations Assistant. You will perform audit checking of consent forms which are required for the purchase of credit reports and is a critical function of our busine
Reference
c43f7197-7cfa-4f31-b022-eb5a4f81d44d
Expiry Date
01/01/0001
Salary
Location
Granada, Spain
Experience Level
Not Applicable
Employment
Permanent
Location
Granada
Role Type
Hybrid
Schedule
Full Time
Department
Analytics
Brand
Experian
Remote working available
No
Description
You will achieve agreed Recurring revenue and New Business targets by developing new and repeat business opportunities from our customers. You will be also responsible for developing relationships wit
Reference
7ebc2924-23ad-4d44-a148-cc9dd5c7fe35
Expiry Date
01/01/0001
Salary
Location
Madrid, Spain
Experience Level
Not Applicable
Employment
Permanent
Location
Madrid
Role Type
Hybrid
Schedule
Full Time
Department
Analytics
Brand
Experian
Remote working available
No
Description
You will achieve agreed Recurring revenue and New Business targets by developing new and repeat business opportunities from our customers. You will be also responsible for developing relationships wit
Reference
aee10d98-fe7d-43bb-84a1-47f5a87635e3
Expiry Date
01/01/0001
Salary
Location
Hyderabad, India
Experience Level
Not Applicable
Employment
Permanent
Location
Hyderabad
Role Type
Hybrid
Schedule
Full Time
Department
Information Technology & Systems
Brand
Experian
Remote working available
No
Description
Create automated reporting (PowerBI) for executive management updates and TBO BAU governance processes.Maintain existing reporting solutions within the TBO team to ensure accuracy and meet stakeholder
Reference
7378259e-9a36-41b2-9139-3a2c5b847826
Expiry Date
01/01/0001
Salary
Location
Cyberjaya, Malaysia
Experience Level
Entry Level
Employment
Permanent
Location
Cyberjaya
Role Type
Hybrid
Schedule
Full Time
Department
Finance
Brand
Experian
Remote working available
No
Description
Role Summary:You will be an important member of the Bulgaria (BG) based finance team with a global remit within Global Finance. You will support both the Global Finance Service (GFS) Measurement Repor
Reference
693def1c-c65c-4b7d-9c0c-88ff82c26981
Expiry Date
01/01/0001