Cyber Security Engineer - Incident Response

Clarivate - Philadelphia, PA

posted 16 days ago

Full-time - Mid Level
Hybrid - Philadelphia, PA
11-50 employees
Professional, Scientific, and Technical Services

About the position

The Cyber Security Engineer - Incident Response role is designed for an experienced professional to enhance the organization's security posture by identifying and mitigating complex security threats and vulnerabilities. The position involves working closely with senior analysts and management to develop and implement security policies, procedures, and controls, while also playing a key role in triaging security incidents and mentoring junior team members.

Responsibilities

  • Identify and mitigate complex security threats and vulnerabilities.
  • Contribute to the development and implementation of security policies, procedures, and controls.
  • Triage security incidents and assist junior team members with escalations.
  • Lead investigations into security breaches and incidents, documenting findings and recommendations for remediation.
  • Conduct in-depth analysis of security alerts and incidents to determine root cause and impact.
  • Utilize incident response plans, including containment, eradication, and recovery strategies.
  • Assist in the creation and maintenance of playbooks and SOPs.
  • Provide guidance and mentorship to Level 1 Security Analysts.

Requirements

  • Bachelor's degree in Cybersecurity, Computer Science, Information Technology, or related field or equivalent relevant work experience.
  • 4+ years of relevant work experience.
  • Strong understanding of cybersecurity principles, protocols, and technologies, both on-prem and in major cloud provider environments.
  • Competency in using Endpoint Detection and Response (EDR) tools like CrowdStrike or Carbon Black.
  • Deep understanding of threat hunting and alert logic with a proven track record of alert tuning.
  • Strong forensic analysis skills, including the use of tools like EnCase or FTK.
  • Proven ability to lead complex incident response efforts and conduct post-incident reviews.
  • Experience utilizing incident response plans, including containment, eradication, and recovery strategies.
  • Experience in the creation and maintenance of playbooks and SOPs.
  • Possession of higher-level certifications such as CISSP, OSCP, or CISM.

Nice-to-haves

  • Experience providing guidance and mentorship to Level 1 Security Analysts.
  • A track record of collaborating with cross-functional teams to assess security risks associated with new projects and initiatives.

Benefits

  • Hybrid working model (office and home based).
  • Equal Opportunity Employer for Vets/Minorities/Women/Disabled.

Tools

Career Hubs

Guides

Company

© 2024 Teal Labs, Inc
Privacy PolicyTerms of Service