Veterans Transition Program Associate, Cyber Operations Engineer
BlackRock · Wilmington, DE · 1 wk ago
EngineeringFull-time
About the role
The Veterans Transition Program is designed to support veterans in making the transition from military life to the civilian workforce. The Program offers participants the opportunity to work at the world’s largest asset manager for six months. On completion of the Program, successful participants will be offered permanent employment at BlackRock.
Responsibilities
- Acts as an escalation point for regional information security incidents and support the response to incidents impacting the region and/or occurring during regional business hours.
- Performs daily review of reports and alerts to identify Information Security events for further investigation while escalating exceptional events as necessary.
- Act as a mentor for more junior team members.
- Performs investigation and escalation for complex or high severity security threats or incidents.
- Ensures that all identified events are promptly validated and thoroughly investigated.
- Collaborates with technical teams to identify, resolve, and mitigate events.
- Provides advice and guidance on the response action plans for information risk events and incidents based on incident type and severity.
- Assists with containment of threats and remediation of environment during or after an incident.
- Regularly develops new and interesting use cases for future SIEM logic.
- Participates in cyber threat hunts in support of the global cyber operations function.
- Assists with forensics investigations.
- Participates in the creation, modification and maintenance of all Cyber Monitoring policies and procedures.
- Keeps abreast of cyber security trends and the emerging threat landscape in general and as it relates to BlackRock.
- Delivers timely and detailed documentation related to any incident including the findings, review and follow-up activities.
Requirements
- 4+ years of experience in security operations center, or similar security technical and operational role.
- University Degree. MBA, CISSP, CISM, GCHI, CEH, CCNA, or GIAC preferred.
- Action-oriented attitude and willingness to roll up sleeves.
- Intermediate knowledge in system security architecture and security solutions – IDS, Splunk, data loss prevention, next generation anti-malware, etc.
- Intermediate knowledge of networking fundamentals (TCP/IP, Network Layers, etc.).
- Intermediate knowledge of malware operation and indicators.
- Intermediate knowledge of current threat landscape (threat actors, APT, cyber-crime, etc.).
- Intermediate knowledge of security related technologies and their functions (IDS, IPS, FW, WAF, SIEM, DLP, Proxy, next gen anti-malware etc.).
- Intermediate knowledge of Windows and Unix or Linux.
- Intermediate knowledge of Firewall and Proxy technology.
- Intermediate knowledge of malware operation and indicators.
- Intermediate knowledge of penetration techniques.
- Advanced event analysis leveraging SIEM tools.
- Advanced incident investigation and response skill set.
- Advanced log parsing and analysis skill set.
- Advanced knowledge of ServiceNow a plus.
- Strong oral and written communication skills.
- Attention to detail.
Qualifications
- Minimum of 2 years of Active Uniformed service.
- 5 years of civilian work experience.
- Bachelor’s degree obtained pre- or post-military service.
- Open to all U.S. Veterans, regardless of rank or branch of service.
Skills
- Passion for cyber security defense.
Benefits
- Comprehensive healthcare.
- Tuition reimbursement.
- Flexible Time Off (FTO).
Pay
TBD
Schedule
Hybrid work model with at least 4 days in the office per week, with the flexibility to work from home 1 day a week.
Location
This role will be based in our Wilmington Delaware Office