Security Incident Response Analyst
4 weeks ago
The Senior Security Incident Response Analyst is a critical role within Oracle's Security Operations team, responsible for supervising security tools, performing investigations of raised notable events, and ensuring the effective implementation of our incident response processes.
Key Responsibilities:- Perform thorough investigations of intensified notable events to identify and contain security threats.
- Collect and analyze evidence related to security events, including compliance audits, to ensure accurate incident response.
- Validate and regularly review processes and procedures to ensure they are up-to-date and effective.
- Identify, issue, and follow up on false positives to minimize unnecessary incident response efforts.
- Implement initial mitigation and containment procedures to prevent security threats from escalating.
- Create and maintain reporting related to security events to inform stakeholders and drive incident response efforts.
- Coordinate with service and operations teams to validate security events and anomalous activity.
- Resolve and report on possible causes of security events and alerts to ensure effective incident response.
- Operate security tools for continual monitoring and analysis of system/network activity to identify malicious activity.
- Assist in the construction of security alerts and processes based on knowledge gained from daily monitoring and triage.
- Advise designated managers and responders of suspected cyber incidents, including the event's history, status, and potential impact.
- Supervise external data sources to maintain basic knowledge of threat conditions.
- Recognize and respond to possible security violations, raising incidents as required.
- Solid understanding of computer networking concepts and protocols, network security methodologies, and host/network access control mechanisms.
- Knowledge of intrusion detection methodologies and techniques, as well as how traffic flows across the network (TCP/IP, OSI, ITIL).
- Understanding of system and application security threats and vulnerabilities, types of network communications (LAN, WAN, MAN, etc.), and file extensions (.zip,.sh,.pcap,.bat,.dll,.py, etc).
- Interpreted and compiled computer languages, common charge vectors, attack classes (passive, active, insider, distributed, etc.), and incident response and handling methodologies.
- Authentication, authorization, and access control methods, information technology (IT) security principles and methods, network traffic analysis methods, operating systems, cyber attackers, defense-in-depth principles, system administration, network, and operating system hardening techniques, cyber attack stages, network security architecture concepts, Windows/Unix ports and services, operating system command-line tools, network protocols, running knowledge of cyber threats and vulnerabilities, and understanding security events related to operating system (Linux and Windows) logs, database logs, VPN logs, and knowledge of adversarial tactics, techniques, and procedures.
- Understanding of network tools (ping, traceroute, nmap, etc.), host base tools (Tanium, basic Linux and Windows native tools), and SIEM (Splunk, ELK, Lumberjack, Splunk Enterprise Security, etc).
- Understanding of cybersecurity and privacy principles and related organizational requirements.
- Detecting host and network-based intrusions via intrusion detection technologies.
- Using protocol analyzers.
- Recognizing and categorizing types of vulnerabilities and associated attacks.
- Reading and interpreting signatures.
- Conducting trend analysis.
- Evaluating information for reliability, validity, and relevance.
- Identifying cyber threats that may jeopardize the organization and/or partner interests.
- Preparing and presenting briefings.
- Providing analysis to aid writing phased after-action reports.
- Using Boolean operators to construct simple and sophisticated queries.
- Using multiple analytic tools, databases, and techniques.
- Using multiple search engines (Google, Yahoo, LexisNexis, DataStar) and tools in conducting open-source searches.
- Applying virtual collaborative workspaces and/or tools (Zoom, JIRA, Confluence, Oradocs, Slack, etc).
- Performing packet-level analysis.
- Using a SIEM to detect, research, and perform initial triage of security events.
- Exercising good judgment in calling out security events.
- Thinking critically.
- Ability to think like threat actors.
- Applying techniques for detecting host and network-based intrusions using intrusion detection technologies.
- Interpreting the information collected by network tools.
- Recommending analytic approaches or solutions to problems and situations for which information is incomplete or for which no precedent exists.
- Effectively collaborating with virtual and remote teams.
- Evaluating information for reliability, validity, and relevance.
- Exercising judgment when policies are not well-defined.
- Functioning reliably in a dynamic, fast-paced environment.
- Ability to function in a collaborative environment, seeking continuous consultation with other analysts and guides, both internal and external to the organization, to demonstrate analytical and technical expertise.
- Recognizing and mitigating cognitive biases that may affect analysis.
- Other tasks and duties as assigned.
- Working effectively within a remote team, including effective, constant, and collaborative communication with all members of the NSGBU SOC.
-
Security Incident Response Analyst
1 month ago
Kitchener, Ontario, Canada Oracle Full timeJob Title: Security Incident Response AnalystOracle is seeking a highly skilled Security Incident Response Analyst to join our team. As a Security Incident Response Analyst, you will be responsible for identifying, analyzing, and responding to security incidents in a timely and effective manner.Key Responsibilities:Identify and analyze security incidents...
-
Security Incident Response Analyst
1 month ago
Kitchener, Ontario, Canada Oracle Full timeJob Title: Security Incident Response AnalystOracle is seeking a highly skilled Security Incident Response Analyst to join our team. As a Security Incident Response Analyst, you will be responsible for identifying, analyzing, and responding to security incidents in a timely and effective manner.Key Responsibilities:Identify and analyze security incidents...
-
Security Incident Response Analyst
1 month ago
Kitchener, Ontario, Canada Oracle Full timeJob Title: Senior Security Incident Response AnalystThe Senior Security Incident Response Analyst is a critical role within Oracle's Security Operations team, responsible for supervising security tools, performing investigations of raised notable events, and ensuring the effective implementation of our incident response processes.Key Responsibilities:Perform...
-
Security Incident Response Analyst
1 month ago
Kitchener, Ontario, Canada Oracle Full timeJob Title: Senior Security Incident Response AnalystThe Senior Security Incident Response Analyst is a critical role within Oracle's Security Operations team, responsible for supervising security tools, performing investigations of raised notable events, and ensuring the effective implementation of our incident response processes.Key Responsibilities:Perform...
-
Security Incident Response Analyst
4 weeks ago
Kitchener, Ontario, Canada Oracle Full timeJob Title: Senior Security Incident Response AnalystThe Senior Security Incident Response Analyst is a critical role within Oracle's Security Operations team, responsible for supervising security tools, performing investigations of raised notable events, and ensuring the effective implementation of our incident response processes.Key Responsibilities:Perform...
-
Security Incident Response Analyst
4 weeks ago
Kitchener, Ontario, Canada Oracle Full timeJob Title: Senior Security Incident Response AnalystThe Senior Security Incident Response Analyst is a critical role within Oracle's Security Operations team, responsible for supervising security tools, performing investigations of raised notable events, and ensuring the effective implementation of our incident response processes.Key Responsibilities:Perform...
-
Security Incident Response Analyst
2 weeks ago
Kitchener, Ontario, Canada Oracle Full timeJob Title: Senior Security Incident Response AnalystThe Senior Security Incident Response Analyst is a critical role within Oracle's Security Operations team, responsible for supervising security tools, performing investigations of raised notable events, and ensuring the effective implementation of our incident response processes.Key Responsibilities:Perform...
-
Security Incident Response Analyst
2 weeks ago
Kitchener, Ontario, Canada Oracle Full timeJob Title: Senior Security Incident Response AnalystThe Senior Security Incident Response Analyst is a critical role within Oracle's Security Operations team, responsible for supervising security tools, performing investigations of raised notable events, and ensuring the effective implementation of our incident response processes.Key Responsibilities:Perform...
-
Security Incident Response Analyst
3 weeks ago
Kitchener, Ontario, Canada Oracle Full timeJob Title: Senior Security Incident Response AnalystThe Senior Security Incident Response Analyst is a critical role within Oracle's Security Operations team, responsible for supervising security tools, performing investigations of raised notable events, and ensuring the effective implementation of our incident response processes.Key Responsibilities:Perform...
-
Security Incident Response Analyst
3 weeks ago
Kitchener, Ontario, Canada Oracle Full timeJob Title: Senior Security Incident Response AnalystThe Senior Security Incident Response Analyst is a critical role within Oracle's Security Operations team, responsible for supervising security tools, performing investigations of raised notable events, and ensuring the effective implementation of our incident response processes.Key Responsibilities:Perform...
-
Security Incident Response Analyst
1 week ago
Kitchener, Ontario, Canada Oracle Full timeJob SummaryThe Senior Security Incident Response Analyst will be responsible for supervising security tools, performing investigations of raised notable events, and performing processes. This role will also be responsible for supplying the SOC Security Tools and detection roadmaps and collaborating with the SOC Management team and external teams on key...
-
Senior Security Incident Response Analyst
1 week ago
Kitchener, Ontario, Canada Oracle Full timeJob SummaryThe Senior Security Incident Response Analyst will be responsible for supervising security tools, performing investigations of raised notable events, and performing processes. This role will also be responsible for supplying the SOC Security Tools and detection roadmaps and collaborating with the SOC Management team and external teams on key...
-
Senior Security Incident Response Analyst
2 weeks ago
Kitchener, Ontario, Canada Oracle Full timeJob SummaryThe Senior Security Incident Response Analyst will be responsible for supervising security tools, performing investigations of notable events, and implementing processes. This role will also involve collaborating with the SOC Management team and external teams on key initiatives.This opportunity requires a few days a week in the Kitchener, Ontario...
-
Kitchener, Ontario, Canada Sonova AG Full timeSenior Cyber Security Incident Response SpecialistSonova AG is a global leader in innovative hearing solutions, and we're seeking a Senior Cyber Security Incident Response Specialist to join our team. As a key member of our security team, you will be responsible for leading the response to security incidents, managing the lifecycle of incidents from...
-
Kitchener, Ontario, Canada Sonova AG Full timeSenior Cyber Security Incident ResponseSonova AG, a global leader in innovative hearing solutions, is seeking a highly skilled Senior Cyber Security Incident Response professional to join our team.As a Senior Cyber Security Incident Response, you will be responsible for leading the response to security incidents, managing the lifecycle of incidents from...
-
Kitchener, Ontario, Canada Sonova AG Full timeSenior Cyber Security Incident ResponseSonova AG, a global leader in innovative hearing solutions, is seeking a highly skilled Senior Cyber Security Incident Response professional to join our team.As a Senior Cyber Security Incident Response, you will be responsible for leading the response to security incidents, managing the lifecycle of incidents from...
-
Kitchener, Ontario, Canada Sonova AG Full timeJob Title: Senior Cyber Security Incident ResponseSonova AG is a global leader in innovative hearing solutions, and we're seeking a highly skilled Senior Cyber Security Incident Response professional to join our team.Job Summary:We're looking for a seasoned Cyber Security Incident Response expert to lead our response efforts to security incidents, manage the...
-
Kitchener, Ontario, Canada Sonova AG Full timeJob Title: Senior Cyber Security Incident ResponseSonova AG is a global leader in innovative hearing solutions, and we're seeking a highly skilled Senior Cyber Security Incident Response professional to join our team.Job Summary:We're looking for a seasoned Cyber Security Incident Response expert to lead our response efforts to security incidents, manage the...
-
Kitchener, Ontario, Canada Sonova AG Full timeSenior Cyber Security Incident ResponseSonova, a global leader in innovative hearing solutions, is seeking a seasoned professional to lead our Cyber Security Incident Response team. As a key member of our security team, you will be responsible for identifying, assessing, and mitigating security threats to our global operations.Key Responsibilities:Lead the...
-
Kitchener, Ontario, Canada Sonova AG Full timeSenior Cyber Security Incident Response Job DescriptionSonova AG, a global leader in innovative hearing solutions, is seeking a highly skilled Senior Cyber Security Incident Response professional to join our team.Job Summary:We are looking for a seasoned Cyber Security Incident Response expert to lead our response efforts to security incidents, manage the...
