Senior CERT Analyst (experienced level professional)

About the role

Michelin is hiring! We are looking for a highly technical performer who has a passion for cybersecurity, outstanding attention to detail, with solid analytical and problem-solving skills. For this senior position, we need an individual skilled in advising other incident analysts and leading various complex incident response scenarios. You'll bring deep technical strength, calm judgment under pressure, and a collaborative approach to restoring services safely while reducing risk. Step into a role where every day brings a new challenge and a chance to make a real impact. As a Senior CERT Analyst, you are at the heart of the organization's cyber defense-proactively tracking emerging threats, analyzing incidents, and mitigating risks. If you're energized by solving complex problems, working in a fast-paced environment, and making a tangible impact on global security, this is the role for you: come join our team! Michelin CERT (Computer Emergency Response Team) is Michelin's global cyber-defense team supporting facilities worldwide 24x7, with analysts in Europe, Asia and the Americas. We focus on 3 incident response missions: assessing impact, coordinating containment and remediation, and reducing risk to an acceptable level. This position is based at our headquarters in Greenville, SC, conveniently located within driving distance to east coast beaches, the Blue Ridge Mountains and large cities like Atlanta and Charlotte. The mild climate, charming downtown, and impressive culinary scene are just a few of the perks of living here.

Responsibilities

• Prevent: Know the latest evolving threats and security technologies; assess and contextualize risk; share findings with technical partners and the global CERT network.
• Detect: Triage alerts, ascertain severity, and provide mentorship during high-severity events; participate in shared on-call coverage (including weekends/holidays).
• Lead business-as-usual and complex incidents, including intrusions, malware, and ransomware, from start to end. Coordinate containment, eradication, and recovery across global teams. Maintain clear communication with collaborators while protecting privacy and confidentiality.
• Expected Coverage Window
• Lead all aspects of global security incidents from 10 am - 7 pm EST/EDT, Weekdays. Weekend and holiday coverage is shared globally by CERT teams (weekend coverage provided by one analyst per zone for a weekend).
• Exceptionally, be available 24/7 to participate in emergency actions for critical severity events if needed.

Requirements

• A solid record of accomplishment for security incident response including leading cyber crisis response, providing security expertise, leading and prioritizing multiple incident workstreams. Capable of defining new procedures and applying best in class security practices,
• Strong knowledge of the cyber kill chain and MITRE ATT&CK for investigation and reporting,
• Hands-on expertise with network forensics and malware identification / eradication,
• Ability to analyze data from cyber defense tools (e.g., SIEM/EDR, network traffic, IDS/IPS, firewall and system logs, OSINT) to identify threats, resolve impact, and recommend mitigations,
• Solid understanding of Windows/Linux environments (2-3 years Administration/DEVOps), networking concepts/protocols, architecture, and system/application hardening,
• Clear written and verbal English communication, including executive-ready updates; strong documentation habits,
• Good interpersonal skills and collaboration abilities with strong team-orientation,
• Ability to mentor junior analysts; comfortable working across time zones,
• Strong dedication to data protection and discretion, following privacy & confidentiality policies.
• An ability to learn and apply new technologies quickly,
• Knowledge or usage of tools such as Splunk, Python, PowerShell, DB query language / tools or others used in offensive and defensive security is a plus.
• Other requirements
• Education: Minimal 2-year technical degree with 5+ years of relevant experience in Information Security, or bachelor's degree (Computer Science, Cybersecurity, Information Technology, or Computer Engineering).
• Travel within North America and Global may be required, but infrequent.
• Minimum 5 years' experience in incident response (CERT/SOC/CSIRT - Manager, Technical Lead, or Forensics Analyst)
• (This role allows for fully remote work, with management located in Greenville, SC, and occasional presence in the office required).
• #LI-hiringmichel

Benefits

Additional Information

Senior CERT Analyst (experienced level professional) Build a Career That Matters with One of the World's Most Respected Employers! - - - - - - - - - - - -

Your Match

How well this role fits your profile.

Company Intel

What employees say

Worked at michelinhr? Share your experience