Cyber Defense Senior Analyst

Requirements

• 3+ years of information security experience working within a Security Operations Center or Cyber Security Incident Response Team.
• Demonstrate working knowledge of the Incident Response Life Cycle, MITRE ATT&CK Framework, Cyber Kill Chain, and other cybersecurity frameworks.
• Demonstrated knowledge of common intrusion methods and cyber-attack tactics, techniques, and procedures (TTPs), as well as common industry practices to investigate and respond to threats, including phishing, malware, network attacks, suspicious activity, and data security incidents.
• Demonstrated proficiency in determining appropriate methods to contain, eradicate, and recover from a variety of security incidents. Provide recommendations to prevent incidents from recurring.
• Possesses an understanding of common Operating Systems (Windows, Linux, Mac OS), Networking (Firewalls, Proxies, NetFlow, etc.), Cloud Infrastructure (AWS, Azure, GCP), and Security Technologies (Anti-Virus, Intrusion Prevention, Web Application Firewalls, etc.)
• Ability to review and interpret device and application logs from a variety of sources (e.g., Firewalls, Proxies, Web Servers, System Logs, Splunk, Packet Captures, etc.) to identify root cause and determi

Additional Information

Company Description Experian is a global data and technology company, powering opportunities for people and businesses around the world. We help to redefine lending practices, uncover and prevent fraud, simplify healthcare, create digital marketing solutions, and gain deeper insights into the automotive market, all using our unique combination of data, analytics and software. We also assist millions of people to realize their financial goals and help them to save time and money. We operate across a range of markets, from financial services to healthcare, automotive, agrifinance, insurance, and many more industry segments. We invest in people and new advanced technologies to unlock the power of data and to innovate. A FTSE 100 Index company listed on the London Stock Exchange (EXPN), we have a team of 23,300 people across 32 countries. Our corporate headquarters are in Dublin, Ireland. Learn more at experianplc.com . Job Description This role operates in a 10x4 Wednesday - Saturday weekly schedule as part of a 24x7 global monitoring function. The frontline team provides global 24x7 security operations and monitoring for cybersecurity events impacting Experian, and is a division of Experian's Cyber Fusion Center (CFC), which is organized under the Experian Global Security Office (EGSO). As a Cyber Defense Senior Analyst, you will perform in-depth analysis, triage, and response to security threats by following documented policies, processes, and playbooks to meet Service Level Objectives (SLOs). This role is critical in ensuring the handling of potential threats and plays a part in improving security operations. You will report to the Director of Cyber Defense Security Operations. You'll have the opportunity to: Execute daily security operations by monitoring, triaging, and conducting response activities for security events and alerts associated with cyber threats, intrusions, and compromises. Analyze events using security tooling and logging, such as SIEM, EDR, and assess the potential risk/severity level of cyber threats. Escalate higher-risk events to dedicated incident response and management teams in the CFC, according to established processes. Collaborate with external teams for incident resolution and escalations, driving incident handling. Notify team Lead(s) of concerns related to operations, such as anomalous changes in metrics, notable open incidents, quality concerns, or observed risks; support with resolution if appropriate. Manage and complete assigned caseload throughout the incident response lifecycle, including analysis, containment, eradication, recovery, and lessons learned; maintain standards of quality to resolve events. Maintain all case documentation, including notes, analysis findings, containment steps, and cause for each assigned security incident. Perform incident updates or make contact with end-users promptly and document them, and complete case hand-off processes, such as completing/verifying shift logs. Apply subject matter expertise in security operations processes to help improve relevant playbooks, Standard Operating Procedures (SOPs), and training materials. Assist the team Leads and management on use case development by suggesting enhancements or tuning of use cases to improve the security posture of Experian. Participate in paid overtime when operational needs may require additional support.

Your Match

How well this role fits your profile.

Company Intel

What employees say

Worked at Experian? Share your experience