Cyber Incident Response Lead - Advanced Response Team (Remote)
- United States
- Information Technology & Systems
- Permanent
- Hybrid
- Full Time
- $133,109 - $239,596
This vacancy has now expired. Please see similar roles below...
As a member of Experian's Global Security Office (EGSO)/Cyber Fusion Center (CFC), you will respond, contain, escalate, investigate, and coordinate mitigation of security events relative to anomalies detected and escalated by the Cyber Fusion Center according to Experian's Incident Response Plan. As an individual contributor, this team member will join a new, growing team of specialized, advanced responders to support escalations of complex and prioritized matters from Experian's existing 24x7 security monitoring and response functions. You will work with end-users, technical support teams, and management to ensure remediation and recovery from these threats.
You will report to the Senior Manager, Global Incident Response. You will have a regular Monday – Friday schedule, with the expectation to participate in an on-call schedule or work outside of normal work hours to respond to cybersecurity incidents.
You'll have the opportunity to:
- Conduct advanced incident response activities to investigate and contain complex or larger-scale cybersecurity matters.
- Orchestrate workstreams across teams (Forensics and Cyber Threat Hunting) and explain the CFC's overall understanding of the timeline of attacker activity.
- Respond to cybersecurity events and alerts associated with threats, intrusions, or compromises per any applicable SLOs.
- Manage multiple cases related to security incidents throughout the incident response lifecycle, including Analysis, Containment, Eradication, Recovery, and Lessons Learned.
- Coordinate successful conclusion of security incidents according to Process & Procedures, and escalate severe incidents according to Experian's Incident Response Plan.
- Maintain case documentation, including notes, analysis findings, containment steps, and cause for each assigned security incident.
- Maintain assigned caseload and move incidents through each phase of the IR Lifecycle, handing off cases as needed for progress.
- Maintain an understanding of common Operating Systems (Windows, Linux, Mac OS), Security Technologies (Anti-Virus, Intrusion Prevention), and Networking (Firewalls, Proxies).
- Interpret device and application logs from a variety of sources (Firewalls, Proxies, Web Servers, System Logs, Splunk, Packet Captures) to identify the root cause and determine the next steps for containment, eradication, and recovery.
- Support overall direction for the CFC and input to the security strategy.
- Mentor and provide advanced support to analysts (Logs review, IP Block question).
Experian is a global data and technology company, powering opportunities for people and businesses around the world. We help to redefine lending practices, uncover and prevent fraud, simplify healthcare, create marketing solutions, and gain deeper insights into the automotive market, all using our unique combination of data, analytics and software. We also assist millions of people to realise their financial goals and help them save time and money.
We operate across a range of markets, from financial services to healthcare, automotive, agribusiness, insurance, and many more industry segments.
We invest in people and new advanced technologies to unlock the power of data. As a FTSE 100 Index company listed on the London Stock Exchange (EXPN), we have a team of 22,500 people across 32 countries. Our corporate headquarters are in Dublin, Ireland. Learn more at experianplc.com
Your background:
- 8+ years of experience working within cybersecurity or information technology roles, at least 4+ of which includes working as an investigator, analyst, or leader in a Cyber Incident Response Team.
- Bachelor's Degree in Computer Science, Computer Engineering, Information Systems, Information Security, or a related field. 11+ years of experience working within a Security Operations Center, Incident Response Team, law enforcement, or military experience may be accepted in lieu of this requirement.
- Knowledge of network protocols (TCP/IP, UDP, ICMP), standard protocols (HTTP/S, DNS, SSH, SMTP, SMB), wireless networking, networking infrastructure, and network topologies (DMZ, VPN, WAN) and network technologies (WAF, IPS, Routers, or Firewalls).
- Experience with commercial and open-source SIEMs, full packet capture tools, and network analysis tools (Splunk, Wireshark, SOF-ELK).
- Exhibit skills using common Incident Response and Security Monitoring applications such as SIEM (Splunk), EDR (FireEye HX, CrowdStrike Falcon, McAfee mVision EDR), WAF, IPS.
- Have at least one certification involving incident response, ethical hacking, cyber security (GCIH, E CEH, E CIH), or network forensics (GIAC Network Forensic Analyst (GNFA), NICCS Certified Network Forensics Examiner (CNFE)).
- Hold one Security Management certification (ISC2 CISSP, CISM) or obtain such certification within the first two years as a Cyber Incident Response Lead.
Benefits/Perks:
- Great compensation package and bonus plan.
- Core benefits including medical, dental, vision, and matching 401K.
- Flexible work environment, ability to work remote, hybrid or in-office.
- Flexible time off including volunteer time off, vacation, sick and 12-paid holidays.
Our uniqueness is that we celebrate yours. Experian's culture and people are important differentiators. We take our people agenda very seriously and focus on what matters; DEI, work/life balance, development, authenticity, collaboration, wellness, reward & recognition, volunteering... the list goes on. Experian's people first approach is award-winning; World's Best Workplaces™ 2024 (Fortune Top 25), Great Place To Work™ in 24 countries, and Glassdoor Best Places to Work 2024 to name a few. Check out Experian Life on social or our Careers Site to understand why.
Our compensation reflects the cost of labor across several U.S. geographic markets. The base pay range for this position is listed above. Within this range, individual pay is determined by work location and additional factors such as job-related skills, experience, and education. This position is also eligible for a variable pay opportunity and a comprehensive benefits package.
Experian is proud to be an Equal Opportunity Employer for all groups protected under applicable federal, state and local law, including protected veterans and individuals with disabilities. Innovation is an important part of Experian's DNA and practices, and our inclusive workforce allows everyone to succeed and bring their whole self to work. If you have a disability or special need that requires accommodation, please let us know at the earliest opportunity.
#LI-Remote
This is a remote position.
Explore Experian's award winning 'people first' culture.
Being part of Experian is exciting. Every day brings new challenges, new opportunities, new ways for us to do what we do best: using our innovative technologies and data to work in new and surprising ways. All brought together in a single thought: Discover the Unexpected.
Learn moreRecommended Jobs
Salary
Location
São Paulo, Brazil
Experience Level
Not Applicable
Employment
Permanent
Location
Sao Paulo
Role Type
Hybrid
Schedule
Full Time
Department
Data Management
Brand
Serasa Experian
Remote working available
No
Description
Atuar em times multidisciplinares de dados contribuindo desde o mapeamento de requisitos, até a modelagem e disponibilização dos dados.Traduzir as necessidades de negócios em soluções alinhadas com as
Reference
1a4c676d-0b54-4576-8612-dac165256e06
Expiry Date
01/01/0001
Salary
Location
Costa Mesa, United States
Experience Level
Mid-Senior Level
Employment
Permanent
Location
Costa Mesa
Role Type
Home
Salary Range
$100,649 - $174,459
Schedule
Full Time
Department
Product Development
Brand
Experian
Remote working available
No
Description
We are looking for a Senior Software Engineer specializing in Retrieval-Augmented Generation (RAG) systems, with experience in large language models (LLMs), vector databases, and cloud-based microserv
Reference
3a380cf1-85e8-4efc-9f9a-ccdf54448428
Expiry Date
01/01/0001
Salary
Location
Hyderabad, India
Experience Level
Not Applicable
Employment
Permanent
Location
Hyderabad
Role Type
Hybrid
Schedule
Full Time
Department
Product Development
Brand
Experian
Remote working available
No
Description
Job description Job DescriptionExperian UK&I Business information division is looking for an accomplished Senior Data Engineer to join our dynamic team. You will develop data engineering applications
Reference
f9bfb9d3-161f-437f-9868-100395c7471a
Expiry Date
01/01/0001
Salary
Location
London, England
Experience Level
Not Applicable
Employment
Permanent
Location
London
Role Type
Hybrid
Schedule
Full Time
Department
Sales & Business Development
Brand
Experian
Remote working available
No
Description
We are looking for a Business Development Manager to join the Experian Identity Verification & Fraud team, working within our Go-to-Market function and alongside our vertical account management teams,
Reference
dba4a58a-5e46-498d-8aee-37bb5c62408f
Expiry Date
01/01/0001
Salary
Location
Hyderabad, India
Experience Level
Not Applicable
Employment
Permanent
Location
Hyderabad
Role Type
Hybrid
Schedule
Full Time
Department
Product Development
Brand
Experian
Remote working available
No
Description
As a Senior Software Engineer, you will play a key role in the design and development of key initiatives within the Experian Automotives domain.Key Responsibilities and skillset:Design, Development an
Reference
cba7d6d8-2b95-4766-9b4a-6a43234eaea8
Expiry Date
01/01/0001
Salary
Location
London, England
Experience Level
Not Applicable
Employment
Permanent
Location
London
Role Type
Hybrid
Schedule
Full Time
Department
Analytics
Brand
Experian
Remote working available
No
Description
The Generative AI Centre of Expertise (GenAI CoE) at Experian exists to improve our products, our internal processes and our daily work through GenAI and process automation. The team is a mix of ML en
Reference
a5ecd6ec-ab5c-449a-ab4b-8aa331359bcf
Expiry Date
01/01/0001
Salary
Location
São Paulo, Brazil
Experience Level
Not Applicable
Employment
Permanent
Location
Sao Paulo
Role Type
Home
Schedule
Full Time
Department
Product Development
Brand
Serasa Experian
Remote working available
No
Description
Quais serão suas principais responsabilidades:Estruturar e conduzir descobertas e pesquisas para entender as necessidades dos usuários, mapeando jornadas, necessidades e pontos de dor;Criar jornadas e
Reference
5646a2d7-37f8-487f-90e6-ba937927bb90
Expiry Date
01/01/0001
Salary
Location
São Paulo, Brazil
Experience Level
Not Applicable
Employment
Permanent
Location
Sao Paulo
Role Type
Roam
Schedule
Full Time
Department
Sales & Business Development
Brand
Serasa Experian
Remote working available
No
Description
Realizar Vendas e Atendimento de sua carteira de Clientes do Segmento da INDUSTRIA no estado de São Paulo;Conhecer profundamente o Segmento que seus clientes estão inseridos e a atuação dos mesmos;Ela
Reference
ec67e968-af8d-405a-82c1-2a5a524a4b48
Expiry Date
01/01/0001
Salary
Location
Nottingham, England
Experience Level
Not Applicable
Employment
Permanent
Location
Nottingham
Role Type
Hybrid
Schedule
Full Time
Department
Finance
Brand
Experian
Remote working available
No
Description
We’re hiring for a pivotal role in the Procurement team, offering a fantastic opportunity to shape the future of procurement across the region.As the Technology Buying Group Lead, you’ll oversee all t
Reference
293ab53a-c2a3-44b6-83b3-daae1ef5895d
Expiry Date
01/01/0001
Salary
Location
São Paulo, Brazil
Experience Level
Not Applicable
Employment
Permanent
Location
Sao Paulo
Role Type
Hybrid
Schedule
Full Time
Department
Customer Service
Brand
Serasa Experian
Remote working available
No
Description
Quais serão suas principais responsabilidades?Nesta posição você se tornará parte integrante de nossa equipe de Customer Experience com foco no sucesso do cliente no uso das nossas soluções de prevenç
Reference
c232cbc3-0908-412d-8e13-5a589ea526c5
Expiry Date
01/01/0001
Salary
Location
Hyderabad, India
Experience Level
Not Applicable
Employment
Permanent
Location
Hyderabad
Role Type
Hybrid
Schedule
Full Time
Department
Product Management
Brand
Experian
Remote working available
No
Description
Experian's direct-to-consumer (D2C) team is seeking Product Manager to own membership communication and digital support experience and strategy. This includes critical infrastructure that underpins tr
Reference
a5dfbb8c-68f4-4dfe-8cf3-507d7caa6c48
Expiry Date
01/01/0001
Salary
Location
Sofia , Bulgaria
Experience Level
Not Applicable
Employment
Permanent
Location
Sofia
Role Type
Hybrid
Schedule
Full Time
Department
Analytics
Brand
Experian
Remote working available
No
Description
What you will do:Assist in monitoring and running daily ETL/ELT pipelines using SQL and cloud tools (e.g., AWS, SQL Server, Athena)Help troubleshoot data pipeline issues (e.g., job errors, missing dat
Reference
e468625c-382a-488d-b7f0-30b6f6e4a779
Expiry Date
01/01/0001
Salary
Location
Nottingham, England
Experience Level
Not Applicable
Employment
Permanent
Location
Nottingham
Role Type
Hybrid
Schedule
Full Time
Department
Legal & Compliance
Brand
Experian
Remote working available
No
Description
Why this role is important to usOperational Risk is central to how we protect our business, our people, and our customers. You will sit within our Group Risk team and play a part in shaping the strate
Reference
5f47d36a-de3d-4e0d-b40a-d3a8d6897d04
Expiry Date
01/01/0001
Salary
Location
Sofia, Bulgaria
Experience Level
Mid-Senior Level
Employment
Permanent
Location
Sofia
Role Type
Hybrid
Schedule
Full Time
Department
Finance
Brand
Experian
Remote working available
No
Description
The Junior Risk Data Analyst provides support to the Risk Reporting & Analytics team by assisting with data collection and reporting. This entry-level role focuses on building foundational skills in r
Reference
4a024441-7ab1-4d0d-8681-4df90a3797fd
Expiry Date
01/01/0001
Salary
Location
Southbank, Australia
Experience Level
Associate
Employment
Permanent
Location
Southbank
Role Type
Hybrid
Schedule
Full Time
Department
Customer Service
Brand
Experian
Remote working available
No
Description
This role is an essential role within our Client Operations team, serving as the primary point of contact for all B2B client product and support inquiries. This role supports clients across Australia,
Reference
51f846c5-842d-4c55-9da1-f9f60b167274
Expiry Date
01/01/0001
Salary
Location
Southbank, Australia
Experience Level
Not Applicable
Employment
Permanent
Location
Southbank
Role Type
Hybrid
Schedule
Full Time
Department
Customer Service
Brand
Experian
Remote working available
No
Description
The Client Implementation Manager is responsible for leading our clients through the successful migration and adoption to an updated product API service, ensuring minimal disruption and maximum value
Reference
30c45471-6a51-4eec-bd36-5a98693aeb79
Expiry Date
01/01/0001