The Role: As a Cyber Incident Response Analyst, you will be part of the Global Technology, Cyber Security team that develops and oversees the company's security program, ensuring the company is protected from existing and emerging threats. Working with the various teams, the Cyber Incident Response Analyst will follow appropriate procedures that are in place to detect and respond decisively to security incidents, assist with incident response-related activities within the US and providing support globally.
Candidates should have a genuine interest in cyber security and a good understanding of the tactics, techniques, and procedures of attackers. This role requires a detail oriented, critical thinker who understands how hackers work to exploit systems / networks / people and how to respond to such attacks.
Coordinate and triage response to cybersecurity events and conduct forensic analysis
Understand the threat landscape through collaboration with industry peers, threat intelligence community and organizations such as FS-ISAC
Perform threat hunting activity to proactively identify security events
Support incident response related activities
Create and Playbooks and SOPs
Work closely with the SOC in investigating incidents and delivering containment, remediation and root cause analysis.
Deliver actionable incident metrics to management
Follow the end-to-end incident response lifecycle
Build an understanding of key S&P technology, systems, and business practices
Working knowledge of common cyber security attacks and tools
Excellent communication skills to effectively present to different business and technical audiences
Demonstrated experience handling security events in critical environments
Experience analyzing system and application logs to investigate security and operational issues
Demonstrated experience utilizing a SIEM (Splunk preferred) in investigating security issues, creating alerts, reports and threat hunting.
Strong knowledge of current enterprise detection and monitoring technologies and processes
3+ years of information security experience and prior experience focused on incident response activities
Passion for cyber security
Excellent report writing and presentation skills
Comfortable working in a fast-paced, exciting environment
Advanced knowledge of network protocols (TCP, IP, HTTP) and operating systems
Experience in the financial services industry preferred
Familiarity with threat hunting techniques preferred
Coding/Scripting in any major language (Python, PowerShell, Go) preferred
Windows and Linux administration tools and concepts preferred
Understanding of Cyber Threat Actors and the cyber crime ecosystem
S&P Global states that the anticipated base salary range for this position is $83,200 to $190,100 . Base salary ranges may vary by geographic location. In addition to base compensation, this role is eligible for an annual incentive plan.
This role is eligible to receive additional S&P Global benefits. For more information on the benefits we provide to our employees, visit https://www.spgbenefitessentials.com/newhires .
At S&P Global, we don't give you intelligence-we give you essential intelligence. The essential intelligence you need to make decisions with conviction. We're the world's foremost provider of credit ratings, benchmarks and analytics in the global capital and commodity markets. Our divisions include S&P Global Ratings, S&P Global Market Intelligence, S&P Dow Jones Indices and S&P Global Platts. For more information, visit www.spglobal.com .
S&P Global has a Securities Disclosure and Trading Policy ("the Policy") that seeks to mitigate conflicts of interest by monitoring and placing restrictions on personal securities holding and trading. The Policy is designed to promote compliance with global regulations. In some Divisions, pursuant to the Policy's requirements, candidates at S&P Global may be asked to disclose securities holdings. Some roles may include a trading prohibition and remediation of positions when there is an effective or potential conflict of interest. Employment at S&P Global is contingent upon compliance with the Policy.
S&P Global is an equal opportunity employer and all qualified candidates will receive consideration for employment without regard to race/ethnicity, color, religion, sex, sexual orientation, gender identity, national origin, age, disability, marital status, military veteran status, unemployment status, or any other status protected by law. Only electronic job submissions will be considered for employment.
If you need an accommodation during the application process due to a disability, please send an email to: EEO.Compliance@spglobal.com and your request will be forwarded to the appropriate person.
The EEO is the Law Poster http://www.dol.gov/ofccp/regs/compliance/posters/pdf/eeopost.pdf describes discrimination protections under federal law.
20 - Professional (EEO-2 Job Categories-United States of America), IFTECH202.2 - Middle Professional Tier II (EEO Job Group)
Job ID: 264459 Posted On: 2021-09-02 Location: Virtual, New York, United States