Truist Financial - Zebulon, NC
posted 5 months ago
The Senior Incident Response Engineer within the advanced 24/7 Cyber Incident Response Team (CIRT) is a critical role responsible for receiving, investigating, and resolving all escalations effectively. This position requires a strong foundation in Digital Forensics & Incident Response (DFIR), where professionals must be adept in log, packet, network, endpoint, and root cause analysis. The Senior IR Engineer is expected to possess a problem-solving mentality, capable of navigating structured, unstructured, and complex situations. A deep understanding of Windows internals is essential for effectively responding to and eradicating advanced attacks, making threat hunting a key aspect of the role. The ability to quickly differentiate between nefarious artifacts and benign activity is crucial for success in this position. In addition to technical skills, Senior IR Engineers will be consulted on a variety of problems, both technical and non-technical, within the team and the larger organization. This role is based on-site in Zebulon, NC, and requires participation in an on-call rotation with specific shift options. The 3rd Shift schedule can either be a 5-day work week from Tuesday to Saturday or a 4-day work week from Friday to Monday, both with a pay differential of 15% for the 3rd shift. The position involves developing and maintaining technical IT/cyber capabilities across all phases of the software development lifecycle, including threat modeling, static and dynamic application security testing, and penetration testing. The Senior IR Engineer will lead efforts in designing, planning, enhancing, and testing cybersecurity technologies used throughout the enterprise, ensuring efficient operation and effective use of resources. This role also includes analyzing information to recommend and plan the use of new information security technologies, leading the implementation of these technologies, and providing expert technical support for information security technologies.