Vacancy caducado!
We invite you to be part of our team of trailblazers dedicated to helping people discover and enjoy the outside. Come join us. Because on the inside we're all outsiders. And if it's outside, we're all in.
L.L.Bean is currently searching for a Lead Technical Security Analyst to join the Security and Compliance Information Services team.Position Purpose: The Computer Security Incident Response Team Lead coordinates all cybersecurity incident detection, response, containment and remediation activities for L.L.Bean. The Lead Analyst will support the continuous improvement of the Incident Response Process and its initiation, and to brief all levels of executive management on security topics and to execute emergency responses during cybersecurity events. Responsibilities- Serve as the senior-level technical resource for cyber security incident handling, providing expert guidance on identification, analysis, response and recovery from cyber threat activity.
- Provide day-to-day management and coaching for CSIRT team members
- Establish performance objectives, assign/direct work, monitor progress and appraise performance
- Develop employees in job-related skills through work assignments, direct training and development plans, and provide regular feedback, both positive and developmental
- Recommend and administer wages and salaries of direct reports
- Communicate company policies and procedures and resolve routine personnel problems in accordance with them
- Own responsibility for all Incident Response playbooks, procedures, and workflows.
- Research and investigate new and emerging cyber threats and vulnerabilities through participation in external security communities.
- Maintain and continuously improve the threat intelligence program.
- Maintain and continuously improve proactive threat hunting practices.
- Define processes, maturing playbooks of operational response to incidents, with inevitable goals of response automation.
- Develop and participate in cyber war games, tabletop exercises, and other activities to ensure response readiness.
- Computer Science or related degree or work experience.
- Experience applying threat and vulnerability analyses models, examples include the MITRE ATT&CK Framework, the LM Cyber Kill Chain, and the Diamond Model of Intrusion Analysis
- Systems scripting and automation in multiple languages, including but not limited to Powershell, Bash, Python, Perl, etc.
- Experience automating threat response actions.
- Knowledge of incident response in IaaS/PaaS environments (Google Cloud Platform, Azure)
- Strong, demonstrated knowledge of and experience with enterprise security and risk management solutions .including, experience in adhering to industry security controls frameworks, for example, CIS, NIST, HITRUST, PCI-DSS, ISO, etc.
- Support 7x24 on call requirements.
- Knowledge of red-team or purple-team threat simulation systems.
- Strong problem determination skills for complex enterprise systems.
- Coaching, support and training of others.
- Ability to write clear and concise technical and business documents.
- Strong written, verbal and public speaking communication skills.
- Demonstrated ability to think strategically and perform detailed, complex analysis and data interpretation
- Effective interpersonal skills, out-of-the-box thinking and ability to interface with all levels of staff
- Ability to work under pressure and deal with ambiguous situations
- Certifications a plus, include GCIH, CISSP, CISM, etc.
Vacancy caducado!