-
ID
#4986269 -
Job type
Full-time -
Salary
TBD -
Source
Visa -
Date
2020-10-07 -
Deadline
2020-12-06
Incident Response Sr. Cyber Security Analyst
Texas, Ustx 00000 Ustx USAVacancy expired!
Job Description
Information security is an integral part of Visa's corporate culture. It is essential to maintaining our position as an industry leader in electronic payments, which is why Visa has made it a priority to create top-tier security operations and incident response teams to defend the company against evolving cyber threats. If you would like to join a company where security is truly valued, where you can work with like-minded peers who are passionate about the art & science of cyber defense, and where you can use state of the art tools for maximum impact, then we have a home for you.
JOB DESCRIPTION
The successful candidate will be responsible for providing cyber incident response subject matter expertise while collaborating on numerous security projects and operational improvement initiatives. This position will support the operational activities of Jr. level cyber analysts while helping to develop the team’s investigative skillset. The successful candidate with champion incident responseenrollment requirements to ensureoperational effectiveness and alert fidelity. In addition, this position will be responsible for continuously identifying gaps and manageimprovements in security response process, technologies, and monitoring. Working closely witharchitecture, engineering and project management teams, the successful candidate will ensure cyber-defense requirements are identified and communicated early in theCyber Threatlife-cycle.
ESSENTIAL FUNCTIONS:Support cyber incident response actions to ensure proper assessment, containment, mitigation and documentation
Support cyber investigations and contribution tolarge and small-scalecomputer security breaches
Review and analyze cyber threats andsupplySME support and training to junior level security analysts
Interact andaidother investigative teams within Visa on time sensitive, critical investigations
Participate as part of a close team of technical specialists on coordinated responses andremediation of security incidents
Manage the security monitoring enrollment process to ensure adequate coverage and effectiveness of all new and existing cloud andon-premisebased applications, services and platforms
Maintain detailed tracking plan of all internal/external enrollment outcomes/recommendations andsupplysupport through to implementation
Act as a liaison between cyber-defense, engineering, security architecture, network & system operations,and functional project teams to ensure effective project implementationthat meets incident response requirements
Work with colleagues in other technology departments as well as the business and product offices to establish effective, productive business relationships
Define baseline security monitoring requirements for all new projects, services and applications joining the Visa network
Facilitate the development andtuningof SIEM rules to support enrollments and ensure high fidelity alerting
Qualifications
BASIC QUALIFICATIONS:-10 years of experience with a Bachelor's Degree, or 8 years of experience with an advanced degree (MBA, Masters) or 3 years with a Ph. DPREFFERED QUALIFICATIONS:5+ years’ experience in security,network,or cyber engineering operations
3 -5+ years of related experience in cybersecurity or computer network defense
Bachelor's degree in computer science, information systems, or a related technical discipline or equivalent professional experiencerelatedto information security, cyber, or computer network defense
Relevantsecurity related certificationsa plus: CISSP, GCIA, GSEC, GCIH, GCED, GCFA, GREM
Proven subject matterabilityin relevant areas, such as incident response, intrusionanalysis, incident handling,malware analysis, web securityor security engineering
Strong knowledge of malware families and network attack vectors
Strong knowledge of Linux, Windows system internals
YARA,RegExexperience
Demonstrated experience in an enterprise-level incident response team or security operations center. Direct experience handling advanced cyber security incidents and associated incident response toolset
Strong working knowledge ofcommon security tools, such as a SIEM, AV, scanners, proxies, WAF,netflow, IDSorforensics tools
Advanced technical knowledge associated with various operating systems, network services and applications. A keen understanding of logging components and capabilities
Strong interpersonal and leadership skills to influence and build credibility as a peer
Excellent communication and presentation skills withprovenskill in presenting analytical data effectively to varied (including executive) audiences
Web and Application Security:
Knowledge of Web Application Firewall management and policy rules combined with knowledge of process and workflow
Experienced with Cloud-based log aggregation, correlation, and alerting using commercial and open source tools
Knowledge of open source and commercial application security tools and frameworks, including but not limited to Kali related web application testing tools
Knowledge of web apps and web services security vulnerabilities including cross-site scripting, cross-site request forgery, SQL injection, DoS attacks, XML/SOAP, and API attacks.
Understanding of the Top10OWASP threats
Excellent understanding of common network and web protocols
Excellent understanding of DDoS techniques and mitigation mechanisms
Well versed in system exploits (e.g. Buffer Overflows, PTH attacks, windows authentication framework etc.)
Additional Information
Work Hours- Incumbent must make themselves available during core business hours.
- This position requires the incumbent to travel for work less than 5% of the time.
- This position will be performed in an office setting. The position will require the incumbent to sit and stand at a desk, communicate in person and by telephone, frequently operate standard office equipment, such as telephones and computers, reach with hands and arms, and bend or lift up to 25 pounds.
Visa will consider for employment qualified applicants with criminal histories in a manner consistent with EEOC guidelines and applicable local law.
All your information will be kept confidential according to EEO guidelines.
Vacancy expired!