PCI Analyst
NBCUniversal's Cyber Threat Operations team is responsible for providing cyber threat intelligence, event analysis, incident response and threat hunting for all areas of NBCUniversal in a highly collaborative, fast paced, and agile fashion.
As a member of the Cyber Response team, a candidate can expect to utilize their technical expertise to assess, contain, and remediate cyber threats.
The SOC Analyst is responsible for analysis and escalation of security events and alerts to incidents.
The ideal candidate would have a working knowledge of current and relevant security technologies and how to apply them to cyber event analysis and response actions.
A clear investigative methodology with a focus on preserving evidence and analyzing data to form conclusions that will steer response directions.
Experience analyzing and responding to security events and incidents with practical and working knowledge of response analysis methodologies and enhancing security response processes.
The role involves regular interaction with various groups and leadership within the organization to accomplish job responsibilities.
Working under the direction of the Manager, Cyber Response, the successful candidate will be responsible for participating in the following activities:
Day-to-day operational tasks related to the ongoing support of Threat Operations.
Responsible for documenting evidence throughout the incident life cycle, conducting shift handovers, escalating security events to incident response, and providing support during cyber security incidents Responsible for the ticket queue triage:
prioritization, assignment, and disposition of security incident tickets/events.
Responsible for analyzing threat data from multiple sources and building evidence backed dispositions.
Responsible for front line triage and response including some containment and remediation actions such as network isolation of hosts and blocking indicators of compromise within security perimeter tools.
nalyst must keep detailed reports on all analysis activity, documented in the case management tool to validate process adherence.
Quals ssociate's or Bachelor's Degree in an IT related field and/or equivalent work experience bility to analyze cybersecurity events, and incidents thru training or hobby activities Working knowledge of core Enterprise IT concepts (web application architectures, networking, etc.
) Experience with host-based and network-based forensics tools and analysis Knowledge of the cyber threat landscape to include different types of adversaries, campaigns, and the motivations that drive them Knowledge of industry recognized security and analysis frameworks (MITRE Telecommunication&CK, Kill Chain, Diamond Model, NIST Incident Response, etc.
) Must be self-motivated and able to work both independently and as part of a team Strong communication (both verbal and written) bility to be on call and provide support during nontraditional working hours Desired:
- Degree in Computer Science, or equivalent experience - Security Operations Center experience preferred.
- Customer service experience, working with users over the phone, via email, and in person.
- Self-motivated with the ability to work independently.
- Splunk or other SIEM experience - creating alerts, reports, dashboards, etc.
Recommended Skills Agile Methodology Case Management Computer Security Customer Service Dashboard Information Technology Estimated Salary: $20 to $28 per hour based on qualifications.
As a member of the Cyber Response team, a candidate can expect to utilize their technical expertise to assess, contain, and remediate cyber threats.
The SOC Analyst is responsible for analysis and escalation of security events and alerts to incidents.
The ideal candidate would have a working knowledge of current and relevant security technologies and how to apply them to cyber event analysis and response actions.
A clear investigative methodology with a focus on preserving evidence and analyzing data to form conclusions that will steer response directions.
Experience analyzing and responding to security events and incidents with practical and working knowledge of response analysis methodologies and enhancing security response processes.
The role involves regular interaction with various groups and leadership within the organization to accomplish job responsibilities.
Working under the direction of the Manager, Cyber Response, the successful candidate will be responsible for participating in the following activities:
Day-to-day operational tasks related to the ongoing support of Threat Operations.
Responsible for documenting evidence throughout the incident life cycle, conducting shift handovers, escalating security events to incident response, and providing support during cyber security incidents Responsible for the ticket queue triage:
prioritization, assignment, and disposition of security incident tickets/events.
Responsible for analyzing threat data from multiple sources and building evidence backed dispositions.
Responsible for front line triage and response including some containment and remediation actions such as network isolation of hosts and blocking indicators of compromise within security perimeter tools.
nalyst must keep detailed reports on all analysis activity, documented in the case management tool to validate process adherence.
Quals ssociate's or Bachelor's Degree in an IT related field and/or equivalent work experience bility to analyze cybersecurity events, and incidents thru training or hobby activities Working knowledge of core Enterprise IT concepts (web application architectures, networking, etc.
) Experience with host-based and network-based forensics tools and analysis Knowledge of the cyber threat landscape to include different types of adversaries, campaigns, and the motivations that drive them Knowledge of industry recognized security and analysis frameworks (MITRE Telecommunication&CK, Kill Chain, Diamond Model, NIST Incident Response, etc.
) Must be self-motivated and able to work both independently and as part of a team Strong communication (both verbal and written) bility to be on call and provide support during nontraditional working hours Desired:
- Degree in Computer Science, or equivalent experience - Security Operations Center experience preferred.
- Customer service experience, working with users over the phone, via email, and in person.
- Self-motivated with the ability to work independently.
- Splunk or other SIEM experience - creating alerts, reports, dashboards, etc.
Recommended Skills Agile Methodology Case Management Computer Security Customer Service Dashboard Information Technology Estimated Salary: $20 to $28 per hour based on qualifications.
|
|
 | |
