Cyber Incident Response Lead - Advanced Response Team (Remote)
- United States
- Information Technology & Systems
- Permanent
- Hybrid
- Full Time
- $129,232 - $232,617
As a member of Experian's Global Security Office (EGSO)/Cyber Fusion Center (CFC), you will respond, contain, escalate, investigate, and coordinate mitigation of security events relative to anomalies detected and escalated by the Cyber Fusion Center according to Experian's Incident Response Plan. As an individual contributor, this team member will join a new, growing team of specialized, advanced responders to support escalations of complex and prioritized matters from Experian's existing 24x7 security monitoring and response functions, responsible for responding to and analyzing security incidents involving threats targeting Experian information assets. You will work with end-users, technical support teams, and management to ensure remediation and recovery from these threats.
You will report to the Senior Manager, Global Incident Response.
You'll have the opportunity to:
- Conduct advanced incident response activities to investigate and contain complex or larger-scale cybersecurity matters.
- Orchestrate workstreams across teams (Forensics and Cyber Threat Hunting) and explain the CFC's overall understanding of the timeline of attacker activity so that appropriate containment and remediation actions can be coordinated.
- Respond to cyber security events and alerts associated with threats, intrusions, or compromises per any applicable SLOs.
- Manage multiple cases related to security incidents throughout the incident response lifecycle, including Analysis, Containment, Eradication, Recovery, and Lessons Learned.
- Coordinate successful conclusion of security incidents according to Process & Procedures, and escalate severe incidents according to Experian's Incident Response Plan.
- Maintain case documentation, including notes, analysis findings, containment steps, and cause for each assigned security incident.
- Maintain assigned caseload and move incidents through each phase of the IR Lifecycle, handing off cases as needed for progress.
- Maintain an understanding of common Operating Systems (Windows, Linux, Mac OS), Security Technologies (Anti-Virus, Intrusion Prevention), and Networking (Firewalls, Proxies).
- Interpret device and application logs from a variety of sources (Firewalls, Proxies, Web Servers, System Logs, Splunk, Packet Captures) to identify the root cause and determine the next steps for containment, eradication, and recovery.
- Mentor and provide advanced support to analysts (Logs review, IP Block question).
- Support overall direction for the CFC and input to the security strategy.
Experian is a global data and technology company, powering opportunities for people and businesses around the world. We help to redefine lending practices, uncover and prevent fraud, simplify healthcare, create marketing solutions, and gain deeper insights into the automotive market, all using our unique combination of data, analytics and software. We also assist millions of people to realise their financial goals and help them save time and money.
We operate across a range of markets, from financial services to healthcare, automotive, agribusiness, insurance, and many more industry segments.
We invest in people and new advanced technologies to unlock the power of data. As a FTSE 100 Index company listed on the London Stock Exchange (EXPN), we have a team of 22,500 people across 32 countries. Our corporate headquarters are in Dublin, Ireland. Learn more at experianplc.com
Your background:
- Bachelor's Degree in Computer Science, Computer Engineering, Information Security, or a related field, or 8+ years of experience working within Security Operations Centers or Cyber Security Incident Response Teams.
- Demonstrated knowledge of Incident Response and Investigative Methodology.
- Must have knowledge of network protocols (TCP/IP, UDP, ICMP), standard protocols (HTTP/S, DNS, SSH, SMTP, SMB), wireless networking, networking infrastructure, and network topologies (DMZ, VPN, WAN) and network technologies (WAF, IPS, Routers, Firewalls).
- Experience with commercial and open-source SIEMs, full packet capture tools, and network analysis tools (Splunk, Wireshark, SOF-ELK).
- Exhibit skills using common Incident Response and Security Monitoring applications such as SIEM (Splunk), EDR (FireEye HX, CrowdStrike Falcon, McAfee mVision EDR), WAF, IPS.
- Demonstrated knowledge of common intrusion methods and cyber-attack tactics, techniques, and procedures (TTPs).
- Have at least one certification involving incident response, ethical hacking, cyber security (GCIH, E CEH, E CIH), or network forensics (GIAC Network Forensic Analyst (GNFA), NICCS Certified Network Forensics Examiner (CNFE)).
- Hold one Security Management certification (ISC2 CISSP, CISM) or obtain such certification within the first two years as a Cyber Incident Response Lead.
- This role has a regular Monday – Friday schedule, with the expectation to participate in an on-call schedule or work outside of normal work hours to respond to cybersecurity incidents.
Benefits/Perks:
- Great compensation package and bonus plan.
- Core benefits including medical, dental, vision, and matching 401K.
- Flexible work environment, ability to work remote, hybrid or in-office.
- Flexible time off including volunteer time off, vacation, sick and 12-paid holidays.
Our uniqueness is that we celebrate yours. Experian's culture and people are important differentiators. We take our people agenda very seriously and focus on what matters; DEI, work/life balance, development, authenticity, engagement, collaboration, wellness, reward & recognition, volunteering... the list goes on. Experian's people first approach is award-winning; Great Place To Work™ in 24 countries, FORTUNE Best Companies to work and Glassdoor Best Places to Work (globally 4.4 Stars) to name a few. Check out Experian Life on social or our Careers Site to understand why.
Experian is proud to be an Equal Opportunity and Affirmative Action employer. Innovation is an important part of Experian's DNA and practices, and our diverse workforce drives our success. Everyone can succeed at Experian and bring their whole self to work, irrespective of their gender, ethnicity, religion, colour, sexuality, physical ability or age. If you have a disability or special need that requires accommodation, please let us know at the earliest opportunity.
#LI-Remote
This is a remote position.
Explore Experian's award winning 'people first' culture.
Being part of Experian is exciting. Every day brings new challenges, new opportunities, new ways for us to do what we do best: using our innovative technologies and data to work in new and surprising ways. All brought together in a single thought: Discover the Unexpected.
Learn moreRecommended Jobs
Salary
Location
São Paulo, Brazil
Experience Level
Not Applicable
Employment
Permanent
Location
Sao Paulo
Role Type
Home
Schedule
Full Time
Department
Customer Service
Brand
Serasa Experian
Remote working available
No
Description
Desenvolvimento e manutenção de APIs e aplicações Batch em Pyhton, utilizando base de dados MySQL e consumindo filas com Redis. Utilização de pytest para testes unitários, leitura de documentos PDF co
Reference
2cd8cb93-4ef1-4015-969b-64c59132dd36
Expiry Date
01/01/0001
Salary
Location
Hyderabad, India
Experience Level
Not Applicable
Employment
Permanent
Location
Hyderabad
Role Type
Hybrid
Schedule
Full Time
Department
Information Technology & Systems
Brand
Experian
Remote working available
No
Description
Key ResponsibilitiesYou will use appropriate tools, including holistic models of components and interoperability, to contribute to the development of infrastructure architectures in specific business
Reference
e1d0fa8e-6d7f-4ced-9278-fa65f88fb455
Expiry Date
01/01/0001
Salary
Location
Mumbai, India
Experience Level
Mid-Senior Level
Employment
Permanent
Location
Mumbai
Role Type
Hybrid
Schedule
Full Time
Department
Information Technology & Systems
Brand
Experian
Remote working available
No
Description
What you’ll be doing (Job responsibilities for this role)Regulatory Compliance: Ensure compliance with relevant regulations and standards released by Reserve Bank of India (RBI)Vulnerability Managemen
Reference
e07d49b1-01cb-42b8-a3cf-0064847520ac
Expiry Date
01/01/0001
Salary
Location
Mumbai, India
Experience Level
Mid-Senior Level
Employment
Permanent
Location
Mumbai
Role Type
Hybrid
Schedule
Full Time
Department
Sales & Business Development
Brand
Experian
Remote working available
No
Description
The Sales Specialist will be responsible fordriving product sales across Decisioning Software, Identity Verification & Fraud Solutions across all clients in the region. He/she will drive Presales thro
Reference
e4292e1a-66fa-4a15-9207-dd8d30e2f39a
Expiry Date
01/01/0001
Salary
Location
Hyderabad, India
Experience Level
Not Applicable
Employment
Permanent
Location
Hyderabad
Role Type
Hybrid
Schedule
Full Time
Department
Information Technology & Systems
Brand
Experian
Remote working available
No
Description
Experian Consumer Services – Careers That Define "What's the Next Big (Data) Thing" for Consumers?As the Senior ITIL Change/Problem Manager, you will be the subject matter expert for our growing engin
Reference
d17071d0-beb4-4051-a5a4-48fc6bbb5a6c
Expiry Date
01/01/0001
Salary
Location
Hyderabad, India
Experience Level
Not Applicable
Employment
Permanent
Location
Hyderabad
Role Type
Hybrid
Schedule
Full Time
Department
Information Technology & Systems
Brand
Experian
Remote working available
No
Description
You will be #LI-hybrid based in Hyderabad and reporting to your manager. This is individual contributor (Non-Managerial) role Key Responsibilities:Design, implement, and manage scalable and reliable i
Reference
f74764af-52b2-4aba-b038-34edf03affc3
Expiry Date
01/01/0001
Salary
Location
Mumbai, India
Experience Level
Mid-Senior Level
Employment
Permanent
Location
Mumbai
Role Type
Hybrid
Schedule
Full Time
Department
Sales & Business Development
Brand
Experian
Remote working available
No
Description
The Sales Specialist will be responsible fordriving product sales across Decisioning Software, Identity Verification & Fraud Solutions across all clients in the region. He/she will drive Presales thro
Reference
2080dc79-1a44-479d-afd2-3386091ef196
Expiry Date
01/01/0001
Salary
Location
Hyderabad, India
Experience Level
Not Applicable
Employment
Permanent
Location
Hyderabad
Role Type
Hybrid
Schedule
Full Time
Department
Product Development
Brand
Experian
Remote working available
No
Description
We are looking for someone to lead our product development team. You must be a self-starter and not be afraid to roll-up their sleeves as a player-coach. You have customer support application experien
Reference
bcab0edb-60df-4750-bf51-69969afe3a32
Expiry Date
01/01/0001
Salary
Location
Hyderabad, India
Experience Level
Not Applicable
Employment
Permanent
Location
Hyderabad
Role Type
Hybrid
Schedule
Full Time
Department
Legal & Compliance
Brand
Experian
Remote working available
No
Description
The Legal Manager role will support the Company in all legal matters including(a) Contract Negotiation & Drafting: Drafting, review and negotiation of various client and vendor contracts and other doc
Reference
de213a14-e2d8-4b25-bef3-6f159c0f3f71
Expiry Date
01/01/0001
Salary
Location
Southbank, Australia
Experience Level
Not Applicable
Employment
Permanent
Location
Southbank
Role Type
Hybrid
Schedule
Full Time
Department
Product Management
Brand
Experian
Remote working available
No
Description
This role is necessary to our product's success by ensuring that our messaging is both compelling and consistent across all channels. You will support the Head of Product Success by blending industry-
Reference
952d69a7-83d5-494c-b0d4-06272071b4e7
Expiry Date
01/01/0001
Salary
Location
North Sydney, Australia
Experience Level
Not Applicable
Employment
Permanent
Location
Sydney
Role Type
Hybrid
Schedule
Full Time
Department
Product Management
Brand
Experian
Remote working available
No
Description
This role is necessary to our product's success by ensuring that our messaging is both compelling and consistent across all channels. You will support the Head of Product Success by blending industry-
Reference
e42cae15-0d04-4716-bb8b-60b2bc51752a
Expiry Date
01/01/0001
Salary
Location
Lima, Peru
Experience Level
Not Applicable
Employment
Permanent
Location
Lima
Role Type
Hybrid
Schedule
Full Time
Department
Sales & Business Development
Brand
Experian
Remote working available
No
Description
Propósito del cargo:El cargo de Jefe Comercial tiene como propósito la ejecución y seguimiento de la estrategia comercial definida para la cartera asignada, así como consolidar un plan de relacionamie
Reference
3afda651-bb6f-43db-ac1e-9f08d77f3509
Expiry Date
01/01/0001
Salary
Location
São Paulo, Brazil
Experience Level
Not Applicable
Employment
Permanent
Location
Sao Paulo
Role Type
Home
Schedule
Full Time
Department
Product Development
Brand
Serasa Experian
Remote working available
Yes
Description
Estamos em busca de um (a) SRE talentoso (a) e motivado (a) para se juntar à nossa equipe dinâmica. A fim de garantir a confiabilidade, disponibilidade e desempenho dos nossos sistemas e serviços. Atu
Reference
7b691afd-43da-455d-b8d8-c3d7d62b19d4
Expiry Date
01/01/0001
Salary
Location
Lima, Peru
Experience Level
Not Applicable
Employment
Permanent
Location
Lima
Role Type
Hybrid
Schedule
Full Time
Department
Sales & Business Development
Brand
Experian
Remote working available
No
Description
Propósito del cargo:Asegurar la satisfacción de los clientes con el fin de incrementar el posicionamiento de los productos en para pequeñas y medianas empresas de diferentes industrias. Responsabilida
Reference
d504a183-eff5-465a-a93e-908cdb6a5d8c
Expiry Date
01/01/0001
Salary
Location
Lima, Peru
Experience Level
Not Applicable
Employment
Permanent
Location
Lima
Role Type
Hybrid
Schedule
Full Time
Department
Product Development
Brand
Experian
Remote working available
No
Description
Proposito del cargo:El líder técnico es reponsable del análisis y diseño detallados, la construcción y entrega para pruebas de calidad y de usuario que permitan liberar los componentes de software cum
Reference
cb701895-1d00-46d7-ad1f-7ea651e5b81a
Expiry Date
01/01/0001
Salary
Location
Heredia , Costa Rica
Experience Level
Not Applicable
Employment
Permanent
Location
Heredia
Role Type
Home
Schedule
Full Time
Department
Product Development
Brand
Experian
Remote working available
No
Description
Job descriptionWe are looking for an experienced Staff DevOps Engineer – Cloud Automation III to join our team. You will have 5+ years of experience designing and implementing CI/CD pipelines, infrast
Reference
a09d0f0a-d3d8-4c1b-8444-e8bc37547151
Expiry Date
01/01/0001