Jobs · Engineering · Utah

Cyber Operations Engineer III

Conduent · Sandy, UT · 2 wk ago
On-siteEngineering$91k–$119k/yrFull-time

About the role

You’ll be a part of Conduent Cyber Security Operations team, the Level III CSIRT lead Analyst that will utilize multiple security technologies that allow CSIRT members to work collaboratively and efficiently while responding to threats. As Weekend lead analyst 1st shift (Friday, Saturday, Sunday, Monday) within a 24/7 Cyber Security monitoring environment and you will be responsible for carrying out Security Incident management processes. You’ll partner with Security Engineers to implement and improve technology and process to enhance CSIRT monitoring, investigation, and response.

Responsibilities

  • Manage multi-step breach and investigative analysis of advanced threats
  • Serve as an escalation resource and mentor for other analysts
  • Work directly with cyber threat intelligence to convert intelligence into useful detection
  • Work with security partners developing and refining monitoring use cases
  • Coordinate evidence/data gathering and documentation and review Security Incident reports
  • Identify root cause incident and take proactive mitigation
  • Define required security controls and processes and enforces through the execution of policy documentation, standards, education and awareness, and conducting risk assessments
  • Maintain and monitor external regulatory requirements and supports compliance and certification activities
  • Enforce a defense-in-depth methodology in support of the overall enterprise cyber security risk posture
  • Create and develop CSIRT processes and procedures working with Level 2 and Level 1 Analysts

Requirements

  • Bachelor’s Degree from four-year college or university in Information Technology, Information Security/Assurance, Engineering or similar area of study required
  • Minimum of 3 years of technical experience in Incident Response and Management
  • Experienced in providing shift leadership and technical guidance to Level I & II Security analysts in a SOC environment
  • Advanced knowledge and expertise of using SIEM technologies for event investigation
  • Experience with incident handling/incident response techniques within a cloud-based environment such as Azure
  • Exposure and understanding of audit requirements (PCI, HIPPA, GDPR, etc.)

Preferred Qualifications

  • Certified Incident Handler (GCIH)
  • Certified Intrusion Analyst (GCIA)
  • Certified Ethical Hacker (CEH)

Similar jobs

Cyber Security Engineer III

Fidelis TechnologiesAnnapolis Junction, MD· 35 mo ago
Information Technologyapply on fidelis-technologies.rippling-ats.com