Expert Incident Response Analyst
4 weeks ago
The Expert Incident Response Analyst will be curious and knowledgeable regarding cyber security standards and technologies, specifically focused on infrastructure within an industrial control system (ICS) environment, able to work independently or with appropriate stakeholders as needed. You will provide the opportunity to focus on threat identification, proactive threat hunting, incident response, and cyber threat intelligence fusion. You will be part of a highly collaborative, dynamic, responsive, and agile team providing incident response and cyber defense services to IT & OT infrastructure.
You will primarily be responsible for system-based defense to support forensic analysis of compromised devices, endpoint log analysis, development, delivery, and enforcement of response and remediation activities across the organization. You will also be responsible for development of advanced mitigations to ensure defensive resiliency. Daily activities will include collection and analysis of potentially compromised systems, malware analysis, root cause analysis, and remediation efforts. In this role, you will work multi-functionally in a diverse teaming environment with various internal points of contacts and handoffs.
The role is hybrid and is expected to be in-person at least one day per week in the SIOC in Concord, CA.
PG&E is providing the salary range that the company in good faith believes it might pay for this position at the time of the job posting. This compensation range is specific to the locality of the job. The actual salary paid to an individual will be based on multiple factors, including, but not limited to, specific skills, education, licenses or certifications, experience, market value, geographic location, and internal equity. Although we estimate the successful candidate hired into this role will be placed between the entry point and the middle of the range, the decision will be made on a case-by-case basis related to these factors. This job is also eligible to participate in PG&E's discretionary incentive compensation programs.
A reasonable salary range is:
Bay Area Minimum: $136,000
Bay Area Maximum: $232,000
Job Responsibilities
- Maintain knowledge of adversary activities, including intrusion tactics, attack techniques and operational procedures.
- Investigate and respond to potential cybersecurity incidents
- Analysis of security event logs from a variety of sources
- Forensic analysis of potential evidence
- Static and dynamic malware analysis
- Network packet capture analysis
- Lead incident response efforts, coordinating resources as needed
- Documentation of analysis, including summarization for executive review
- Perform proactive threat hunting
- Work cross-functionally to recommend, facilitate, and test security control improvements
- Create and refine security operations workflows for new and existing tools
- Provide guidance to junior analysts
- Share on-call responsibility outside of business hours, onsite and remote
Qualifications
Minimum:
- High School or GED-General Educational Development-GED Diploma
- 6 years' experience in IT-Information Technology security, including working in Security Operations Centers
Desired:
- Bachelor's Degree in Computer Science or job-related discipline or equivalent experience
- Previous experience supporting cyber defense analysis of Operational Technology (OT) Networks, including Integrated Controls Systems (ICS), SCADA, and Process Control Networks (PCN).
- Formal IT Security/Network Certification, such as WCNA, CompTIA Security +, Cisco CCNA, GIAC GCIH, GMON, GCFA, GCFE, GREM, GICSP, GRID, or other relevant certifications
- Utility Industry experience
- Experience with compliance standards: NERC-CIP, SOX, TSA
- Previous experience working with various SIEM, EDR, and digital forensic technologies
- Experience with scripting in Python, PowerShell
- Malware reverse engineering skills
Read the full posting.
-
Expert Incident Response Analyst
4 weeks ago
San Francisco, California, United States Pacific Gas and Electric Company Full timePosition SummaryThe Expert Incident Response Analyst will be curious and knowledgeable regarding cyber security standards and technologies, specifically focused on infrastructure within an industrial control system (ICS) environment, able to work independently or with appropriate stakeholders as needed. You will provide the opportunity to focus on threat...
-
Senior Incident Response Analyst
3 weeks ago
San Diego, United States North American Full timePosition Overview: We are seeking a highly skilled Senior Incident Response Analyst to join our dynamic team. The ideal candidate will possess extensive experience in incident response methodologies, threat detection, and mitigation strategies. The Senior Incident Response Analyst will play a crucial role in safeguarding our organization's assets by...
-
Expert OT Cyber Incident Responder
11 hours ago
San Francisco, United States Pacific Gas and Electric Company Full timeRequisition ID # 157239 Job Category: Information Technology Job Level: Individual Contributor Business Unit: Information Technology Work Type: Hybrid Job Location: Concord Department Overview The Cybersecurity function is led by PG&E's Senior VP and Chief Information Officer and is responsible for cybersecurity and risk...
-
Senior Incident Response Analyst
2 weeks ago
San Diego, United States SHEIN Technology LLC Full timeJob Title: Senior Security Engineer IReports to: Monitoring & Response Teams ManagerJob Location: San Diego, CA, USAJob Status: Exempt, FTAbout SHEINSHEIN is a global online fashion and lifestyle retailer, offering SHEIN branded apparel and products from a global network of vendors, all at affordable prices. Headquartered in Singapore, with more than 15,000...
-
Senior Incident Response Analyst
2 weeks ago
San Diego, United States SHEIN Technology LLC Full timeJob Title: Senior Security Engineer IReports to: Monitoring & Response Teams ManagerJob Location: San Diego, CA, USAJob Status: Exempt, FTAbout SHEINSHEIN is a global online fashion and lifestyle retailer, offering SHEIN branded apparel and products from a global network of vendors, all at affordable prices. Headquartered in Singapore, with more than 15,000...
-
Senior Incident Response Analyst
2 weeks ago
San Diego, United States SHEIN Technology LLC Full timeJob Title: Senior Security Engineer IReports to: Monitoring & Response Teams ManagerJob Location: San Diego, CA, USAJob Status: Exempt, FTAbout SHEINSHEIN is a global online fashion and lifestyle retailer, offering SHEIN branded apparel and products from a global network of vendors, all at affordable prices. Headquartered in Singapore, with more than 15,000...
-
Incident Response Officer
1 month ago
San Antonio, United States CareerBuilder Full timeLackland Air Force Base, San Antonio, TX, USA Req #6383 Tuesday, April 9, 2024 STS Systems Support, LLC (SSS) is seeking an Incident Response Officer (Intermediate) Requirements: Active TS/SCI Extensive knowledge of network firewalls, computer and server log analysis, computer network servers (DNS, proxy, e?mail, domain controller, file server, Active...
-
Incident Management Analyst
5 days ago
San Antonio, United States S2ssoft Full timeJob DescriptionJob DescriptionIncident Management Analyst (Major Incident Management) Is Must San Antonio, TXDescription:The Incident Management Analyst will support and provide a good analysis of an incident and/or a solution to it in order to restore the disturbed service as soon as possible. Oversee incident documentation, ensuring accuracy within RCA...
-
Senior Security Incident Response Engineer
4 days ago
San Francisco, United States Twitch Full timeAbout Us Twitch is the world's biggest live streaming service, with global communities built around gaming, entertainment, music, sports, cooking, and more. It is where thousands of communities come together for whatever, every day. We're about community, inside and out. You'll find coworkers who are eager to team up, collaborate, and smash (or elegantly...
-
Incident Management Analyst
5 days ago
San Antonio, United States K-Tek Resourcing Full timeJob DescriptionJob DescriptionJob Title: Incident Management Analyst (Major Incident Management) Is Must Location: San Antonio, TXDuration: Long Term Contract Description:The Incident Management Analyst will support and provide a good analysis of an incident and/or a solution to it in order to restore the disturbed service as soon as...
-
Incident Management Analyst
3 days ago
San Antonio, United States PamTen Full timeThe Incident Management Analyst will support and provide a good analysis of an incident and/or a solution to it in order to restore the disturbed service as soon as possible. Oversee incident documentation, ensuring accuracy within RCA (Root cause analysis) and undertake an immediate effort to restore a failed IT application. Responsibilities: •Managing...
-
San Diego, United States Booz Allen Hamilton Full timeJob Number: R0198035 Digital Forensics Incident Response Consultant, Mid Key Role: Display professional and expert knowledge of incident response processes, tools, and techniques. Handle incident investigation with little oversight and make significant contributions to any incident response efforts. Participate in cyber incident response investigations...
-
Incident Management Analyst _ITIL certification
2 weeks ago
San Antonio, Texas, United States Luxoft Full timeProject descriptionThe Incident Management Analyst will support and provide a good analysis of an incident and/or a solution to it in order to restore the disturbed service as soon as possible. Oversee incident documentation, ensuring accuracy within RCA (Root cause analysis) and undertake an immediate effort to restore a failed IT...
-
Incident Management Analyst _ITIL certification
2 weeks ago
San Antonio, US Luxoft Full timeProject descriptionThe Incident Management Analyst will support and provide a good analysis of an incident and/or a solution to it in order to restore the disturbed service as soon as possible. Oversee incident documentation, ensuring accuracy within RCA (Root cause analysis) and undertake an immediate effort to restore a failed IT...
-
Director, Incident Command
5 days ago
San Francisco, United States University of California Full timeDirector, Incident Command IT Email Full Time 76935BR Job Summary The Director provides guidance and direction to ensure IT services are stable and performing through proactive monitoring and event management. The Director works with cross-functional IT units to ensure essential resources are engaged and focused on critical events as efficiently and...
-
Technology Deployment Expert
1 month ago
San Francisco, CA, United States Open Gov Full timeAbout the Subject Matter Expert - Financials / Accounting / Purchasing: OpenGov's Subject Matter Experts bring their expertise to help design solutions using OpenGov technology for prospective customers and customers alike. Leveraging their deep government experience they design and create innovative ways to solve complex problems, delighting our...
-
SOC Analyst Level 2
1 month ago
San Francisco, United States Sparrow Inc Full timeSOC Analyst Level 2 POSITION SUMMARY Join a highly skilled and motivated team of Cyber Security Professionals tasked with protecting customer infrastructure. The Cyber Security Analyst role is primarily focused on responding to alerts, detection of IOCs (Indicators of Compromise), incident response, alert/SIEM tuning, threat hunting, and triage. Leverage...
-
Security Operations Analyst
6 days ago
San Francisco, United States Astranis Full timeSecurity Operations Analyst Astranis is looking for a Security Operations Analyst who isn’t afraid to dive headfirst into the digital abyss. Our ideal candidate is enthusiastic about security and has a knack for dissecting malware, untangling the complex webs of phishing schemes, and leading the charge during incident response operations. With cyber...
-
Expert Programmer Analyst
1 week ago
San Ramon, United States Pacific Gas And Electric Company Full timeRequisition ID# 157568 Job Category: Information Technology Job Level: Individual Contributor Business Unit: Information Technology Work Type: Hybrid Job Location: San Ramon; Oakland Department Overview Information Systems Technology Services is a unified organization comprised of various departments which collaborate effectively in order to deliver high...
-
Expert Programmer Analyst
3 weeks ago
San Ramon, CA, United States PG&E Corporation Full timeRequisition ID # 157568 Job Category: Information Technology Job Level: Individual Contributor Business Unit: Information Technology Work Type: Hybrid Job Location: San Ramon; Oakland Department Overview Information Systems Technology Services is a unified organization comprised of various departments which collaborate effectively in...