Senior Incident Response Analyst
Location(s): Lansdale, PA
•Maintain the security services and technologies involving the SIEMconfiguration & planning, and incident response.
•Develop and apply the structure & methodology needed to ensure thatincident response is accomplished in a consistent, thorough and measurable manner.
•Familiar with risks associated with information security technologies,networks, operating systems and web applications.
•Customer facing experience with strong verbal and written communicationskills.
•Serve as the lead cyber security technical liaison between customerstaffs and other supporting entities.
•Project and security service improvement.
•Day to day operational response.
•Forensics image acquisition.
•Conduct detailed investigations on events of interest and performsystem, network, and malware analysis.
•Produce comprehensive documentation on findings and actions taken informal and informal incident reports with distribution to proper channels andLE/CI.
•Engage in functional integration discussion/coordination betweentechnical and non-technical groups that may have involvement in IncidentResponse activities (e.g. Law Enforcement, Legal, IT, Intel, etc).
•Provide quality assurance and control over security technologiesincluding Intrusion Detection & Prevention Systems (IDS/IPS), Firewalls& Log Analysis, Security Event and Incident Management (SEIM), Antivirus,Network.
•Assist with technical requirement for special projects asrequired.
MINIMUM REQUIREMENTS:•Bachelor’s degree.
•Five (5) plus years of Security Information and Event Manager (SIEM)analysis experience.
•Three (3) plus years of incident response experience.
•Three (3) plus years of forensic analysis.
•Experience with Packet Analyzers, Security Systems Manager, malwareanalysis, forensics tools, and reverse engineering.
•Experience with email gateways, web gateways, PCAP and network tools.
•Experience with programs and script using python, Perl, visual basic,PowerShell and/or comfortable with regex expressions.
•Experience in information technologies to include computer hardware andsoftware, operating systems, and networking protocols.
•Experience with End Point Detection technology.
•In order to be considered for this opportunity, you must be eligible toobtain and maintain security clearance, which requires USA Citizenship.
PREFERRED QUALIFICATIONS:(insert bullets below)
• MBA or Technical Graduate Degree.
• Information Security and Government Compliance with concentration in NIST andCritical Security Controls experience.
• IT Audit and Compliance Certifications such as CISSP, CISA, and CISM.
• Active DoD Clearance.
Cobham’s values of Trust, Talent and Technology have driven us from our launch in 1934 by Sir Alan Cobham, an aviation innovator, to becoming a global leader in state-of-the-art aerospace and defense systems. And it’s the insights of our innovators today that will secure our collective future. Innovators like you.
Cobham is one of the world’s leading companies engaged in the development, delivery and support of leading-edge aerospace and defense systems in the air, on land and at sea. Our clients and partners trust Cobham to deliver the mission-critical technology they need, and we trust our employees to draw on their ingenuity and passion to deliver those solutions. This leads to an empowering culture for our people. Our Leadership team is open, sharing plans for the next five years, driving retention by offering demanding, exciting work, and providing full guidance and mentoring.
Cobham is an Equal Opportunity/Affirmative Action Employer and embraces diversity in our employee population. It is the policy of Cobham to provide equal opportunity to all qualified applicants and employees without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, age, disability, protected veteran status, or genetic information. Cobham will refrain from discharging, or otherwise discriminating against, employees or applicants who inquire about, discuss, or disclose their compensation or the compensation of other employees or applicants.