Previous Job
Threat Analyst
Ref No.: 18-11691
Location: MONTVALE, New Jersey
Known for being a great place to work and build a career, CLIENT provides audit, tax and advisory services for organizations in today's most important industries. Our growth is driven by delivering real results for our clients. It's also enabled by our culture, which encourages individual development, embraces an inclusive environment, rewards innovative excellence and supports our communities. With qualities like those, it's no wonder we're consistently ranked among the best companies to work for by Fortune Magazine, Consulting Magazine, Working Mother Magazine, Diversity Inc. and others. If you're as passionate about your future as we are, join our team.
CLIENT is currently seeking a Manager, Security Monitoring and Incident Response, to join our CLIENT Technology Organization.
  • Monitor for threats and vulnerabilities through a combination of automated and manual processes and respond accordingly. As a continuous feedback loop, incorporate learnings into additional preventive and detective controls
  • Research and develop risk mitigating approaches and drive response and remediation
  • Expand the usage of security monitoring tools to improve the security of the environment, including detection, prevention and policy enforcement; Define security configuration for monitoring tools, including alerts, correlation rules, and reporting. Leverage a combination of vendor products and services, open source and custom developed utilities
  • Serve as a subject matter expert for security monitoring and incident response related knowledge domain and tools
  • Stay abreast of the latest information security controls, practices, techniques and capabilities in the marketplace; Lead internal skills development activities for information security personnel on the topic of security monitoring and incident response, by providing mentoring and by conducting knowledge sharing sessions
  • Perform all phases of incident response life cycle: analysis, containment, eradication, remediation, recovery; Conduct forensics (e.g. host based disk and memory, as well as network) and analysis to determine root cause and impactQualifications:
  • Minimum five years security monitoring experience and incident response activities; preferably within a professional services firm or similar environment
  • Bachelor's degree from an accredited college or university
  • Experience in security monitoring, security operations, and incident response activities; Experience defining security monitoring rules, monitoring events, assessing risk, responding to incidents and providing security oversight related to the security features of IT tools supported by the IT operations teams; Strong trouble-shooting and organizational skills and ability to work on multiple projects simultaneously
  • Understanding of network and system intrusion and detection methods; Examples of related technologies include Splunk, Next Generation Endpoint Protection Platforms (EPP), Security information and event management (SIEM), hacking tools techniques and procedures
  • Experience with malware analysis, endpoint lateral movement detection methodologies and host forensic tools; Understanding of network protocol analysis
  • US Citizenship required