Cyber Incident Management Analyst
Verizon · Irving, TX · 2 wk ago
Information Technology$81k–$155k/yrFull-time
Responsibilities
- Serving as a primary point of contact during assigned on-call shifts, responding promptly to incidents, escalations, and critical alerts to minimize downtime and mitigate risks to the enterprise.
- Utilizing and adhering to defined workflow and processes driving the Incident Management and mitigation efforts.
- Owning, executing and driving all incidents to resolution using strong facilitation, organization, and time management skills.
- Partnering with Cyber Security stakeholders and coordinating remediation activities throughout the Verizon organization and its lines of business as a part of Cyber Incident Handling and After Action Remediation.
- Able to communicate effectively with all levels of business including technical and non-technical audiences.
- Collecting and documenting information to support Incident Response activities; including but not limited to artifacts, action items, timelines, and impacted elements.
- Documenting results of the cyber threat analysis/investigation including containment, recovery, and remediation efforts.
- Leveraging various techniques and capacities to support Cyber Incident Response and non-cyber activities.
- Enhancing and advancing the defensive capabilities of Advanced Cyber Defense (ACD) and its subsequent ability to defend the Verizon Enterprise.
- Recommending solutions to optimize both technical and process/procedure aspects of the end to end incident lifecycle.
- Collaborating with Threat Intelligence, Threat Hunt, DFIR, and SOC teams to integrate relevant data into after action reviews and post-incident evaluations.
- Tracking the implementation of post-incident recommendations and ensuring timely resolution of identified gaps, risks, or weaknesses.
- Producing and maintaining detailed reports summarizing lessons learned, trends, and strategic insights for leadership.
- Providing training and mentoring of junior team members.
Requirements
- Bachelor's degree or four or more years of work experience.
- Four or more years of relevant work experience.
- Three or more years of security operations and/or Incident Handling experience.
- Related Certification (A+, Network+, Security+, CISSP, GCIH, GCFA, GCFE, GNFA, GREM).
- Information Assurance or Cyber Experience in the Telecommunications industry.
- Experience working in a Security Operations Center (SOC) with focus on Computer Network Defense (CND).
- Experience with dynamic and/or malware analysis.
- Experience in Cyber Intelligence or related disciplines.
- Experience with enterprise antivirus, EDR, IDS, Full Packet Capture, and Host/Network Forensics Tools.
- Knowledge of Networking (including the OSI Model, TCP/IP, DNS, HTTP, SMTP), System Administration, and Security Architecture.
- Experience executing various Incident Response Frameworks and Handling Procedures.
- Program and Scripting Experience.
- Experience with Regex.
- Strong knowledge of Operating Systems: Windows, Unix/Linux, and OSX Operating Systems.
- Experience and knowledge of cyber risks and threats related to cyber attackers.
- Ability to manage multiple priorities in a dynamic environment.
Qualifications
- Bachelor's degree or equivalent combination of education and experience.
- Four or more years of relevant work experience.
- Three or more years of security operations and/or Incident Handling experience.
- Related Certification (A+, Network+, Security+, CISSP, GCIH, GCFA, GCFE, GNFA, GREM).
- Information Assurance or Cyber Experience in the Telecommunications industry.
- Experience working in a Security Operations Center (SOC) with focus on Computer Network Defense (CND).
- Experience with dynamic and/or malware analysis.
- Experience in Cyber Intelligence or related disciplines.
- Experience with enterprise antivirus, EDR, IDS, Full Packet Capture, and Host/Network Forensics Tools.
- Knowledge of Networking (including the OSI Model, TCP/IP, DNS, HTTP, SMTP), System Administration, and Security Architecture.
- Experience executing various Incident Response Frameworks and Handling Procedures.
- Program and Scripting Experience.
- Experience with Regex.
- Strong knowledge of Operating Systems: Windows, Unix/Linux, and OSX Operating Systems.
- Experience and knowledge of cyber risks and threats related to cyber attackers.
- Ability to manage multiple priorities in a dynamic environment.
Skills
- Communication skills.
- Facilitation and organization skills.
- Time management skills.
- Collaboration skills.
- Technical skills (networking, system administration, security architecture).
- Incident Response Frameworks and Handling Procedures.
- Threat intelligence and analysis.
- Forensic analysis.
- Scripting and programming skills.
- Regex.
- Operating Systems (Windows, Unix/Linux, OSX).
- Knowledge of cyber risks and threats.
Benefits
- Health and wellness benefits including medical, dental, vision, short and long term disability, basic life insurance, supplemental life insurance, AD&D insurance, identity theft protection, pet insurance and group home & auto insurance.
- Matched 401(k) savings plan.
- Up to 8 company paid holidays per year.
- Up to 6 personal days per year.
- Paid parental leave.
- Adoption assistance.
- Tuition assistance.
- Other incentives.
- Flexible work arrangements including remote work and a minimum of three days per week in the office.
- Variety of vacation days based on service.
- Annual salary range for the location(s) listed on this job requisition based on a full-time schedule is: $81,000.00 - $155,000.00.