Dell
Sr. Intrusion Analyst / Malware Hunter- Dell SecureWorks
Greater Chicago Area, US - Computer Hardware, Computer Software, Information Technology and Services
Sr. Intrusion Security Analyst - Dell SecureWorks - Chicago, IL
Security, Risk & Consulting (SRC) Group
Dell SecureWorks is a market leader in information security services with more than 3,600 customers worldwide spanning North America, Latin America, Europe, the Middle East and the Pacific Rim. Organizations of all sizes, across all industries rely on Dell SecureWorks to protect their assets, improve compliance and reduce costs. The combination of strong customer service, award-winning security technology and experienced security professionals makes Dell SecureWorks the premier provider of information security services for any organization. Positioned as a leader of the MSSP industry by several global industry analyst firms, Dell SecureWorks also has received SC Magazine’s “Best Managed Security Service” award and Frost & Sullivan’s North America Security Incident Mitigation and Response Customer Value Leadership Award, among others.
Role Overview:
The candidate who fills this position will provide support for the needs of the company’s Information Security Department as part of its Computer Incident Response Team (CIRT), Forensic Computer Incident Response Team (FCIRT), and Security Operations Center (SOC).
This person will perform all tasks related to this position at the Client site located in Chicago, IL.
Role Responsibilities:
-Interpret and analyze incoming datafeed and decide when malicious or abnormal traffic or behavior was observed; analyze the data, perform application, log, OS, disk, network level forensic analysis for troubleshooting and researching events and alerts, discover and identify its source, purpose, intent, and if malicious or abnormal, then escalate within the procedures for managing a security incident; done within a tight timeframe and a closely coordinated team during emergencies
-Respond to and remediate information security events related to add/change/deletes and other user privilege changes, review events and follow up on exceptions, respond to and escalate incidents where warranted
-Work within a closely coordinated team during emergencies, responding to computer incidents, and act as a key member of CIRT and FCIRT response
-Operate the SOC run-book, document operating procedures, liaison with other departments and staff, and help to educate Client's staff on good security practices
-Support Saturday disaster recovery tests and change controls, and emergency contact testing
-Work with application development groups to generate the necessary detail feeds to the central information security reporting system as required, monitor required daily reports to insure compliance with company policy, audit, and regulatory requirements, and help evaluate new/existing technologies, and manage implementation of new technologies and operational procedures
As a managed security provider, Dell SecureWorks expects its employees to understand and apply commonly known security practices and possess a working knowledge of applicable industry controls such as NIST 800-53. Employees will be expected to acknowledge their security responsibilities in writing prior to gaining access to company systems. Employees will be required to maintain a working knowledge of local security policies and execute general controls as assigned.
Qualifications
Requirements:
-Experience with incident response; be able to perform security incident analysis, reporting, and escalation
-Experience with IDS systems, network signature and anomaly detection systems, web content filtering systems, logging systems, network protocols, web protocols, MS Windows and Linux security, memory and malware analysis
-Experience in financial industry, with experience in ArcSight or other complex SIEM solution
-High interest in this field, inquisitive, self-learning; able to research and use new information to understand the techniques, tactics and procedures used by attackers in the kill chain
Preferences:
-One or more certifications such as CISSP, CISA, GIAC, GSEC, EnCE, or GCIH certification or equivalent training or certification
Company Description
With more than 100,000 team members globally, we promote an environment that is rooted in the entrepreneurial spirit in which the company was founded. Dell’s team members are committed to serving our communities, regularly volunteering for over 1,500 non-profit organizations. The company has also received many accolades from employer of choice to energy conservation. Our team members follow an open approach to technology innovation and believe that technology is essential for human success.
Why work with us?
-Life at Dell means collaborating with dedicated professionals with a passion for technology.
-When we see something that could be improved, we get to work inventing the solution.
-Our people demonstrate our winning culture through positive and meaningful relationships.
-We invest in our people and offer a series of programs that enables them to pursue a career that fulfills their potential.
-Our team members’ health and wellness is our priority as well as rewarding them for their hard work.
Dell is an Equal Opportunity Employer To learn more about our commitment to Diversity & Inclusion, visit: Equal Employment Opportunity Policy Statement
No salary provided
Posted June 24, 2014 at 06:13AM from LinkedIn http://ift.tt/1pdVwFk
via IFTTT
No comments:
Post a Comment