Full-Time Cyber Incident Response Lead

Experian is hiring a remote Full-Time Cyber Incident Response Lead. The career level for this job opening is Experienced and is accepting Worldwide based applicants remotely. Read complete job description before applying.

This job was posted 2 months ago and is likely no longer active. We encourage you to explore more recent opportunities on our site. However, you may still try your luck using 'Apply Now' link below. We recommend focusing on newer listings available here.

Experian

Job Title

Cyber Incident Response Lead

Posted

Career Level

Full-Time

Career Level

Experienced

Locations Accepted

Worldwide

Job Details

Respond, contain, escalate, investigate, and coordinate mitigation of security events. As a member of Experian's Global Security Office (EGSO)/Cyber Fusion Center (CFC), you'll respond to anomalies detected and escalated by the Cyber Fusion Center, following Experian's Incident Response Plan.

Join a growing team of advanced responders. This role supports escalations of complex and prioritized matters from Experian's existing 24x7 security monitoring and response functions, responding to and analyzing security incidents involving threats targeting Experian information assets.

Work with various teams and stakeholders. You'll work with end-users, technical support teams, and management to ensure remediation and recovery from these threats.

Key Responsibilities:

  • Conduct advanced incident response activities to investigate and contain complex or larger-scale cybersecurity matters.
  • Orchestrate workstreams across teams (Forensics and Cyber Threat Hunting) and explain the CFC's overall understanding of attacker activity.
  • Respond to cyber security events and alerts associated with threats, intrusions, or compromises (meeting applicable Service Level Objectives).
  • Manage multiple cases throughout the incident response lifecycle (Analysis, Containment, Eradication, Recovery, and Lessons Learned).
  • Coordinate successful incident conclusion according to process and procedures, escalating severe incidents.
  • Maintain detailed case documentation (notes, analysis findings, containment steps, cause).
  • Manage assigned caseload and hand off cases as needed.
  • Maintain understanding of common Operating Systems, Security Technologies, and Networking.
  • Interpret logs (Firewalls, Proxies, Web Servers, System Logs, Splunk, Packet Captures) to identify root cause and next steps.
  • Mentor and provide advanced support to analysts.
  • Support overall direction for the CFC and input to security strategy.

Required Background:

  • Bachelor's Degree in Computer Science, Computer Engineering, Information Security, or related field, or 8+ years of experience in Security Operations Centers or Cyber Security Incident Response Teams.
  • Demonstrated knowledge of Incident Response and Investigative Methodology.
  • Knowledge of network protocols (TCP/IP, UDP, ICMP), standard protocols (HTTP/S, DNS, SSH, SMTP, SMB), wireless networking, network infrastructure, and topologies (DMZ, VPN, WAN) and network technologies (WAF, IPS, Routers, Firewalls).
  • Experience with commercial and open-source SIEMs, full packet capture tools, and network analysis tools (Splunk, Wireshark, SOF-ELK).
  • Experience using common Incident Response and Security Monitoring applications (SIEM, EDR, WAF, IPS).
  • Knowledge of common intrusion methods and cyber-attack tactics, techniques, and procedures (TTPs).
  • At least one certification involving incident response, ethical hacking, cyber security, or network forensics (e.g., GCIH, E|CEH, E|CIH, GNFA, CNFE).
  • Security Management certification (e.g., CISSP, CISM) or obtain within two years.

FAQs

What is the last date for applying to the job?

The deadline to apply for Full-Time Cyber Incident Response Lead at Experian is 7th of February 2025 . We consider jobs older than one month to have expired.

Which countries are accepted for this remote job?

This job accepts [ Worldwide ] applicants. .

Related Jobs You May Like

Senior Cyber Security Engineer

Sydney, Australia
7 hours ago
AWS
Cloud Security Engineering
Cybersecurity
OFX
Full-Time
Senior Manager

Sr. Azure Cyber Security Architect/Engineer

Mumbai, India
1 day ago
Azure
Azure Security Technologies
Cloud Security
J.S. Held LLC
Full-Time
Senior Manager

Senior Cyber Security Engineer

Sydney, Australia
1 day ago
AWS
Cloud Security
Cybersecurity
OFX
Full-Time
Senior Manager

Cyber Threat Intelligence Analyst

Texas, TX
1 day ago
Closed Source Intelligence
Cybersecurity
Intelligence Analysis
Experian
Full-Time
Experienced

Information Security Governance Policy Senior Analyst

Worldwide
1 day ago
Cloud Security
Cybersecurity
Information Security
Experian
Full-Time
Experienced

Sr. Professional Services Consultant - Federal

GA
1 day ago
BGP Routing
Cloud Security
Firewall Appliances
Palo Alto Networks
Full-Time
Experienced

Senior Technical Writer

Czech Republic
2 days ago
Communication
Cybersecurity
Documentation
Blackpoint
Full-Time
Senior Manager

Platform Security Engineer (DevOps)

Orlando, FL
2 days ago
AWS
CI/CD
Linux
NBCUniversal
Full-Time
Experienced

Major Account Manager - Alps

Zürich, Switzerland
2 days ago
Account Management
Cybersecurity
Enterprise Sales
Palo Alto Networks
Full-Time
Manager

Solutions Consultant - SLED

Reston, VA
2 days ago
Cloud Architectures
Cybersecurity Solutions
Networking
Palo Alto Networks
Full-Time
Experienced
YEAR $198000 - $273000

Security Analyst – Risk, Apps & Infra

Heredia, Costa Rica
2 days ago
Cloud Security
Risk Management
Security Analysis
Experian
Full-Time
Experienced

Cyber Solutions Architect

Birmingham, United Kingdom
2 days ago
Communication
Customer Engagement
Cybersecurity
Resillion
Full-Time
Experienced