Lead Cyber/SOC Analyst (a/k/a Cybersecurity)

State Street Corporation - Boston, MA

posted 24 days ago

Full-time - Mid Level
Boston, MA
Securities, Commodity Contracts, and Other Financial Investments and Related Activities

About the position

The Lead Cyber/SOC Analyst will oversee the triage, analysis, and response to cyber-attacks at State Street's Fusion Center, which operates 24/7 to protect the enterprise from various cyber threats. This role involves leading the incident response process, authoring reports, managing cyber exercises, and enhancing the incident response process while mentoring SOC personnel.

Responsibilities

  • Lead the cyber incident response process for high severity or long running incidents.
  • Author incident status updates and closure reports to leadership.
  • Produce post mortem reports to identify lessons learned and recommendations.
  • Continuously prepare for incidents by updating and maintaining incident response plans, playbooks, and procedures.
  • Manage and participate in cyber-related exercises such as table tops and cyber ranges.
  • Measure the effectiveness and performance of the incident response process through KRI and KPI metrics.
  • Identify methods to continuously enhance the incident response process.
  • Work closely with the SOC to drive development and collaboration.
  • Train and mentor SOC personnel.
  • Create an environment that drives knowledge sharing with teams across the Fusion Center.
  • Help develop the 24/7 Fusion Center mindset and follow the sun model.

Requirements

  • Master's degree or its equivalent in Cyber Security, Information Technology, Computer Science or related field plus 4 years in a cyber security SOC/IR role.
  • Alternatively, a Bachelor's degree or its equivalent in Cyber Security, Information Technology, Computer Science or related field plus 6 years in a cyber security SOC/IR role.
  • CISSP, CEH, OSCP, OSCE or GCIH or applicable certification in Security field.
  • Experience with investigating & managing major/complex cyber incidents end to end.
  • Experience working/leading in a SOC or Fusion Center.
  • Strong operating systems administration skills (Windows, Linux, Mac).
  • Strong malware analysis expertise.
  • Experience in performing memory forensics.
  • Knowledge of adversarial tactics, techniques, procedures (TTPs) & Industry standard frameworks (NIST, Mitre Att&ck).
  • Knowledge of IT architecture and operations (computing, network, storage & cloud).
  • Strong working knowledge of security technologies including but not limited to SIEM, EDR/EPP, AV, ID/PS, HIPS, Web Proxy/Content filtering, AD, PKI and DNS.

Benefits

  • Full-time telecommuting from within the United States permitted pursuant to Company policy.

Tools

Career Hubs

Guides

Company

© 2024 Teal Labs, Inc
Privacy PolicyTerms of Service