CyberSecurity Forensics and Incident Response Analyst
4 weeks ago
Our security analysts will be expected to perform a variety of duties during an average day including but not limited to log analysis, incident response, forensics, system/tooling development, and risk assessment, just to name a few. You must thrive in high-pressure situations, think like both an attacker and defender, and drive relevant teams to take the right actions in the right time frames to mitigate risks. Candidates also need to balance technical risks against business needs and be able to articulate risks and mitigations to members of the global team as well as member of leadership at various levels. You should have a good mix of deep technical knowledge and a demonstrated background in information security. The successful candidate will be expected to be an active contributor, should have good written and oral communication skills, cross-team collaboration skills, and should be open to acquiring and applying new skills. Successful candidates:
Must also be able to participates in rotating on call schedule and must be able to work collaboratively across physical locations. Having the ability to work outside of normal working hours as required due to critical incidents or emergency calls, will be essential to success in this role
Must be willing and able to travel occasionally to Stuttgart, Germany (5-10% travel in a year)
Responsibilities for Cyber Forensics Role
Help define requirements and identify gaps for performing remote compromise assessments
Capture forensic artifacts such as memory and disk images
Pivot on the forensic data working with the global Cyber Threat Intelligence team to determine if the malware is part of a larger campaign, how Bosch is being targeted and take any further remediation required
Lead remote compromise assessments and produce final assessment reports
Perform live box and dead box forensics to identify compromise and attack vector
Provide input for Security Operations Center (SOC) improvement and identify visibility gaps for enterprise monitoring
Collect network intrusion artifacts (e.g., PCAP, domains, URI’s, certificates, etc.) and uses discovered data to enable mitigation of potential incidents
Collect network device integrity data and analyze for signs of tampering or compromise
Analyze identified malicious network and system log activity to determine weaknesses exploited, exploitation methods, effects on system and information
Track and document incident response activities and providing updates to leadership through executive summaries and in-depth technical reports
Plan, coordinate and direct the inventory, examination and comprehensive technical analysis of computer related evidence
Serve as technical forensics liaison to stakeholders and explaining investigation details
Responsibilities Incident Response Role
You will work in the Security Incident Response Team (SIRT) to build, develop, and operate a SIRT that will allow us to quickly identify, respond, and protect against threats to our global infrastructure
You will assist and/or lead investigations in active security incident scenarios, supporting the organization through the Incident Response lifecycle
You will work across functions to identify new and emerging threats and work to develop detection alarms and workflows to assist in future identification and response
Provide expertise in the triage and identification of potential security incidents
Develop and create alarms, dashboards, and workflows to allow quicker and more efficient insight into security events
Identify residual risk through security monitoring and instigate security-focused projects to remediate root cause issues
Proactively hunting threats in our environment, identifying new risk areas, and developing methods for us to proactively address these threats
Coordinate containment, eradication, and recovery actions for high priority on-premises cybersecurity incidents and cloud cybersecurity incidents.
Research security trends and recommend security tool optimization
Provide training, mentoring, and subject matter expertise for Security Operations Center (SOC) staff
Execute the incident response plan, ensuring cross-functional teams operate functionally and efficiently through incident response scenarios
Draft, maintain, and communicate incident reports for an executive audience
-
Pittsburgh, United States Bosch Group Inc Full timeJob Description Our security analysts will be expected to perform a variety of duties during an average day including but not limited to log analysis, incident response, forensics, system/tooling development, and risk assessment, just to name a few. You must thrive in high-pressure situations, think like both an attacker and defender, and drive relevant...
-
Cybersecurity Operations Engineer
2 weeks ago
Pittsburgh, United States Howmet Aerospace Full timeResponsibilities Join Howmet Aerospace's Corporate Information Security team and help positively impact our business. The Cybersecurity Operations Engineer role is an exciting opportunity to help mature our security program through implementing leading technologies, challenging enterprise projects, and evaluating new platforms. We are advancing our solid set...
-
Cyber Watch Desk Analyst
2 weeks ago
Pittsburgh, United States Edgeworth Security Full timeNew World. New Problems. New Solutions Edgeworth Security is a full-service security firm, specializing in Interactive Video Surveillance, Security System Integration, Executive Protection and Security Consulting Services. Our security solutions and suite of managed services leverage modern technology and automation to significantly lower theft and crime,...
-
IT Security Specialist
2 weeks ago
Pittsburgh, United States EverStaff Full timeJob Description EverStaff is seeking a skilled IT Security Specialist to to join a prominent client we have in Pittsburgh and ensure the security of our organization's computer systems and networks. The ideal candidate will have a strong understanding of cybersecurity principles and techniques, as well as practical experience in implementing and maintaining...
-
Cyber Watch Desk Analyst
2 weeks ago
Pittsburgh, Pennsylvania, United States Edgeworth Security Full timeNew World. New Problems. New SolutionsEdgeworth Security is a full-service security firm, specializing in Interactive Video Surveillance, Security System Integration, Executive Protection and Security Consulting Services. Our security solutions and suite of managed services leverage modern technology and automation to significantly lower theft and crime, as...
-
Cyber Watch Desk Analyst
3 days ago
Pittsburgh, Pennsylvania, United States Edgeworth Security Full timeNew World. New Problems. New SolutionsEdgeworth Security is a full-service security firm, specializing in Interactive Video Surveillance, Security System Integration, Executive Protection and Security Consulting Services. Our security solutions and suite of managed services leverage modern technology and automation to significantly lower theft and crime, as...
-
Cybersecurity Operations Specialist
6 days ago
Pittsburgh, United States Howmet Aerospace Full timeAbout Howmet Aerospace Howmet Aerospace Inc. (NYSE: HWM), headquartered in Pittsburgh, Pennsylvania, is a leading global provider of advanced engineered solutions for the aerospace and transportation industries. Our primary businesses focus on jet engine components, aerospace fastening systems, titanium structural parts and forged wheels. With $6.6 billion...
-
Pittsburgh, United States Diverse Lynx Full timeRole: Splunk Engineer Location: Hybrid (Pittsburgh PA, Everett, WA or Beaverton, Oregon) *Candidate must be a $No Visa Sponsership$* Job Summary: Job Title: Security Operations Senior Analyst / SOC L3 role Job Description: We require an 8+ Years experienced SOC professional who will be responsible for working on escalated events, evidence collection,...
-
Pittsburgh, United States Diverse Lynx Full timeRole: Splunk Engineer Location: Hybrid (Pittsburgh PA, Everett, WA or Beaverton, Oregon) *Candidate must be a $No Visa Sponsership$* Job Summary: Job Title: Security Operations Senior Analyst / SOC L3 role Job Description: We require an 8+ Years experienced SOC professional who will be responsible for working on escalated events, evidence collection,...
-
Pittsburgh, United States NCFTA Full timeJob DescriptionJob DescriptionSalary: The National Cyber Forensics & Training Alliance (NCFTA) brings public and private industry together to research and identify current and emerging cybercrime threats globally. Our organization strives to build lasting professional relationships and make a difference in society. We hire employees who are passionate about...
-
IT Security Specialist
7 days ago
Pittsburgh, United States EverStaff Full timeJob Description EverStaff is seeking a skilled IT Security Specialist to to join a prominent client we have in Pittsburgh and ensure the security of our organization's computer systems and networks. The ideal candidate will have a strong understanding of cybersecurity principles and techniques, as well as practical experience in implementing and maintaining...
-
IT Security Specialist
1 day ago
Pittsburgh, United States EverStaff Full timeJob Description EverStaff is seeking a skilled IT Security Specialist to to join a prominent client we have in Pittsburgh and ensure the security of our organization's computer systems and networks. The ideal candidate will have a strong understanding of cybersecurity principles and techniques, as well as practical experience in implementing and maintaining...
-
Cybersecurity Engineer
3 weeks ago
Pittsburgh, United States TechSpace Solutions Inc. Full timeJob Title: Cybersecurity Engineer Location: Rochester, NY & Pittsburg, PA (On-site role)Duration: 12+ Months Candidates from Rail/Metro Industry/aeronautics preferred. Key accountabilities: Analyze Program security needs (including laws and regulations), determine security objectives and main security risks strategyPlan security activities within development...
-
Cybersecurity Operations Specialist
1 day ago
Pittsburgh, United States Howmet Aerospace Full timeResponsibilities Join Howmet Aerospace's Corporate Information Security team and help positively impact our business through leading technologies, exciting and challenging enterprise projects, and new platforms. We are advancing our solid set of security tools to enable our business units to function securely and efficiently according to security best...
-
Info Security Engineer II
6 days ago
Pittsburgh, United States Duquesne Light Full timeReference #: 17958 Duquesne Light Company, headquartered in downtown Pittsburgh, is a leader in providing electric energy and has been in the forefront of the electric energy market, with a history rooted in technological innovation and superior customer service. Today, the company continues its role as a leader in the transmission and distribution of...
-
Info Security Engineer II
2 weeks ago
Pittsburgh, United States Duquesne Light Full timeReference #: 17958 Duquesne Light Company, headquartered in downtown Pittsburgh, is a leader in providing electric energy and has been in the forefront of the electric energy market, with a history rooted in technological innovation and superior customer service. Today, the company continues its role as a leader in the transmission and distribution of...
-
Info Security Engineer II
3 days ago
Pittsburgh, United States Duquesne Light Full timeReference #: 17958 Duquesne Light Company, headquartered in downtown Pittsburgh, is a leader in providing electric energy and has been in the forefront of the electric energy market, with a history rooted in technological innovation and superior customer service. Today, the company continues its role as a leader in the transmission and distribution of...
-
Cybersecurity Engineer-Rochester, NY
1 week ago
Pittsburgh, United States Lorven technologies Full timeJob DescriptionJob DescriptionRole: Cybersecurity EngineerLocation: Rochester, NY & Pittsburgh, PA Onsite- Local preferredMust have: Rail/Metro/Aero/Auto Industry exp ( do not submit other industry candidates) Rail & Metro will be preferred.Must Have: Hands-on experience in areas like Conducting risk analysis and assessments, implementing cybersecurity...
-
Cybersecurity Engineer-Rochester, NY
2 days ago
Pittsburgh, United States Lorven technologies Full timeJob DescriptionJob DescriptionRole: Cybersecurity EngineerLocation: Rochester, NY & Pittsburgh, PA Onsite- Local preferredMust have: Rail/Metro/Aero/Auto Industry exp ( do not submit other industry candidates) Rail & Metro will be preferred.Must Have: Hands-on experience in areas like Conducting risk analysis and assessments, implementing cybersecurity...
-
Info Security Engineer II
2 weeks ago
Pittsburgh, United States Duquesne Light Full timeDuquesne Light Company, headquartered in downtown Pittsburgh, is a leader in providing electric energy and has been in the forefront of the electric energy market, with a history rooted in technological innovation and superior customer service. Today, the company continues its role as a leader in the transmission and distribution of electric energy,...