Description: Participate in incident management and system investigation efforts within proper protocols and legalities. Work with cutting-edge innovative cyber security related technologies. Recommend process and technology related solutions or improvements to protect the company from cyber security vulnerabilities and weaknesses. This position resides in the 24x7 Cyber Incident Response Team (CIRT), a functional group within Cyber Security and Information Technology. The Cyber Security group is responsible for protecting the confidentiality, integrity, and availability of company information and computing networks.
Required Skills - Ability to follow up on security events, reports, and perform investigation and determine root cause and/or escalate concerns to next tier incident response team as needed - Familiarity with any or all of the following technologies; Host-based antivirus, Network malware detonation/sandboxing, Cloud Access Security Broker (CASB) Technologies, Full Packet Capture tools, Intrusion Detection/Prevention Systems (IPS) - Ability to work in a 24x7 environment and participate in working the second or third shift during the week and/or weekends as scheduling requires - Strong understanding of cyber security concepts - Strong understanding of computer networking technologies and architectures - Excellent Customer Service skills - Effective written and oral communication skills - Ability to satisfy service level agreements for support tickets where applicable - Ability to operate under pressure and multi-task, must demonstrate strong bias for action, follow-through and personal leadership Desired Skills - Ability to work effectively with a team of other Information Security professionals - Ability to proactively identify and assess threats and escalate concerns to next tier incident response team if and as needed - Critical thinking in cyber security risk analysis or similar relevant area of focus - Cyber security incident response/management experience - Forensic analysis experience either at the host, network, or both - Familiarity with Intelligence Driven Defense related methodologies - Familiarity with AGILE project management methodologies -
GCIH, CISSP, CEH, CHFI, or other SANS GIAC certifications a plus Additional Information -
Must be willing to travel 10% of the time, work extended hours when needed, and participate in 24x7x365 on-call rotation
Must be willing to travel at least 2 times per month when needed - Position is based out of the Juno Beach, FL office
Must be able to qualify for and hold NRC clearance and NERC CIP access