Cyber Defense Incident Response Manager
Englewood Cliffs, NJ

Job Description

Responsibilities

A highly collaborative, fast paced, and agile team responsible for providing cyber defense services to the NBCUniversal network and related businesses. This specific role includes functional and technical leadership of Incident Response to include but not limited to process improvement, incident response handling, communications, network and system log analysis, and developing a team of incident response analysts. The qualifications captured below provide an overview of the skills and capabilities required for this position.

Qualifications/Requirements

* Minimum 2 years of experience managing a team of Incident Response analysts.
* Minimum 4 years working in an Incident Response (IR) role with proven experience enhancing and advancing IR capabilities, processes, and communications.
* Training, mentorship, and skills advancement of current and future Incident Response analysts
* Previous experience operating a team or function responsible for conducting Incident Response activities from minor events to large enterprise incidents requiring Cyber Playbook escalation.
* Experience conducting network and system log analysis to determine impact and ensure containment of cyber incidents.
* Previous experience conducting static and dynamic malware analysis.
* Previous experience working with network tools and technologies such as firewall (FW), proxies, IPS/IDS devices, full packet capture (FPC), and email platforms.
* Previous experience with SIEM technologies (Splunk, etc.)
* Previous experience with various endpoint threat detection and response (ETDR) technologies
* Previous experience working with various Forensics technologies to include EnCase, FTK, etc.
* Previous experience working with Threat Hunting and Threat Intelligence functions to enhance Incident Response capabilities.
* Maintain initial response to potential incidents and conduct analysis to properly determine threat impact, severity, and proper escalations/communications.
* Experience with improving or enhancing IR processes, capabilities, and response procedures.
* Previous experience working with and documenting analysis results in a knowledge and/or knowledge management system.
* Previous experience working with automated malware analysis technologies such as Palo Alto Wildfire, etc.
* Knowledge of industry recognized analysis frameworks (Kill Chain, Diamond Model, NIST Incident Response, etc.)
* Provide incident handling support to NBCUniversal international lines of business and serve as a liaison between corporate Cyber Defense functions and international stakeholders.
* Strong communication (both verbal and written) and client intimacy skills with experience briefing corporate executives and professionals.
* Must be self-motivated and able to work both independently and as part of a team
* Bachelor's Degree in an IT related field and/or equivalent work experience

Desired Characteristics

* Relevant certifications (Security +, CISSP, GIAC, etc.)
* Previous experience working with ticketing, intelligence, and automation platforms (Demisto, etc.)