Full-Time Sr. Cybersecurity Analyst
Publix is hiring a remote Full-Time Sr. Cybersecurity Analyst. The career level for this job opening is Expert and is accepting USA based applicants remotely. Read complete job description before applying.
Publix
Job Title
Posted
Career Level
Career Level
Locations Accepted
Share
Job Details
The Sr Cybersecurity Analyst 1-2 performs complex analysis, development, and implementation activities across several cybersecurity disciplines including alert investigations, incident response, forensic and malware analysis, and threat intelligence. This position identifies security risks and threats and develops and implements solutions to reduce risk. Under less specific guidance, this position is responsible for protecting Publix systems, networks, and data from unauthorized use or disclosure and ensuring that Publix meets all applicable legal, contractual, and regulatory requirements related to cyber security.
Responsibilities:
- Develop and deliver actionable intelligence services to stakeholders to reduce security risk, support strategic, operational, and tactical decision-making
- Enhance and support incident response, threat hunting, detection engineering, red team operations, and security threat monitoring in a technical capacity
- Develop automation to enhance threat feed and intelligence data ingestion, processing, and dissemination
- Perform intrusion set analysis to fulfill intelligence requirements including threat activity clustering, adversary capability and tradecraft analysis, etc
- Perform highly complex forensic investigations to analyze and reconstruct malicious events to determine the origin and root cause for actual or attempted breaches/compromises of applications, systems, or networks
- Develop and implement highly complex processes and procedures to mature our threat intelligence, detection engineering, incident response, threat hunting, threat emulation, automation, malware analysis, and forensics capabilities
- Play a crucial role in ensuring our cloud capabilities meet PCI/SOX/HIPAA/PII compliance standards
- Provide on-call after-hours support for cyber security incidents
- Bachelor?s degree in management information systems, Computer Science, Business, Information Security, or other analytical disciplines or equivalent experience
- 2+ years (4+ years for Senior Cybersecurity Analyst 2) of experience in one or more of the following areas: cyber threat intelligence, Security Operations, Incident Response, Forensic Analysis, Penetration Testing, Network Security, and Platform Security
- 2+ years (4+ years for Senior Cybersecurity Analyst 2) of experience in triaging incidents using endpoint detection and response (EDR) tools, intrusion protection systems (IPS), Wireshark, web application firewall (WAF), cloud security monitoring and detection tools, forensic acquisition, and analysis tools such as KAPE and volatility in an enterprise setting
- Good knowledge of at least one or more of the following: PCI-DSS, SOX, HIPAA requirements
- 6+ years of experience in one or more of the following areas: cyber threat intelligence, Security Operations, Incident Response, Forensic Analysis, Penetration Testing, Network Security, and Platform Security,
- 6+ years of strong experience triaging incidents using endpoint detection and response (EDR) tools, intrusion protection systems (IPS), Wireshark, web application firewall (WAF), cloud security monitoring and detection tools, forensic acquisition, and analysis tools such as KAPE and volatility in an enterprise setting,
- Experience configuring and analyzing security alerts from next gen firewalls
- Strong understanding of common web-based communication and security protocols,
- Strong understanding of the OWASP top ten security risks and common mitigation techniques,
- Automation and scripting skills using PowerShell, Python, bash or other,
- One or more of the following certifications:
- GIAC Cyber Threat Intelligence (GCTI),
- Splunk Core Certified Advanced Power User,
- GIAC Certified Intrusion Analyst (GCIA),
- GIAC Network Forensic Analyst (GNFA),
- GIAC Certified Forensic Analyst (GCFA),
- GIAC Defending Advanced Threats (GDAT),
- Certified Red Team Professional (CRTP),
- Palo Alto Networks Certified Network Security Engineer (PCNSE)
Employee stock ownership plan that contributes Publix stock to associates each year at no cost
An opportunity to purchase additional shares of our privately-held stock
401(k) retirement savings plan
Group health, dental and vision plans
Paid Time Off
Paid Parental Leave
Short- and long-term disability insurance
Tuition reimbursement
Free hot lunches (buffet-style) at facilities with a cafeteria