Key skills
CloudCyber SecurityTCP/IPLeadershipCommunicationCritical ThinkingProblem Solving
About this role
Role Overview
- assist with leading the team as you assess information security events and incidents across the Target environment
- collaborate and utilize problem solving skills as you work among a team of skilled analysts to address complex problems within a 24x7 Cyber Fusion Center (CFC) environment
- implement new processes and procedures as identified by the CSIRT and CFC Leadership to ensure continuous improvements for Target’s monitoring, detection, and mitigation capabilities
- use your expert-level knowledge of Information Security to monitor SIEM and logging environments for security events and alerts to potential (or active) threats, intrusions, and/or compromises
- lead internal training of CSIRT Analysts to ensure their continued education as an Analyst and growth
- work to understand the global threat landscape by working with Target Cyber Threat Intel team to maintain awareness
- review and guide requests from internal teams and will escalate information security events according to Target’s Cyber Security Incident Response Plan
- lead with containment of threats and remediation of environment during or after an incident
- act as the leader during Cyber Hunt activities alongside of the Target's Cyber Hunt Team
- leverage your expert-level knowledge to write comprehensive reports of incident investigations
Requirements
- 4-year degree, relevant certifications (e.g. GCFA, GREM, GEIR, 13Cubed), or equivalent experience
- 5+ years' direct experience with Security Operations, Incident Response, or Digital Forensics
- Thorough understanding of advanced security and network concepts (Operating systems, intrusion/detection, TCP/IP, ports, etc.)
- Expertise with host and network-based security tools (Velociraptor and Google SecOps preferred)
- Expertise with network monitoring and SOAR use in a SOC environment
- Knowledge in malware analysis, memory forensics and cloud IR desired
- Ability to navigate ambiguity and develop working business relationships
- Ability to demonstrate expert-level analytical expertise, close attention to detail, excellent critical thinking, logic, and adaptive learning
- Demonstrates leadership skills that assist with driving desired outcomes
- Excellent written and oral communication skills
Tech Stack
- Cloud
- Cyber Security
- TCP/IP
Benefits
- comprehensive health benefits and programs, which may include medical, vision, dental, life insurance and more
- 401(k)
- employee discount
- short term disability
- long term disability
- paid sick leave
- paid national holidays
- paid vacation