Response Operations Shift Lead

• Supervise daily shift operations ensuring consistent performance prioritization escalations and adherence to company standards
• Monitor KPIs and shift metrics identifying areas for improvement to address with Management
• Conduct shift handovers for seamless transitions between their shift
• Act as primary point of contact for escalations prioritizing more critical items and providing details to Management on interesting items that happened during the shift
• Oversee and triage ticket queues focusing on prioritization potential impact and escalations
• Lead review of tuning requests for their shift
• Support Incident response as an acting member on the response team working escalated tickets for identified security threats
• Perform root cause and forensic log analysis for security incidents to determine enterprise risk impact and effective remediations needed across multiple technology platforms (Cloud Hosts Networks Applications Email)
• Analyze threat data from multiple sources and identifying security incidents and events of importance for direct escalation to Incident Commander(s).
• Identify articulate and explain attack vectors threat tactics and attacker techniques to technical and non-technical stakeholders including senior leadership
• Take appropriate containment response actions on multiple platforms or in some cases Handoffs to partner teams
• Function as Incident Handler for security incidents to drive containment and remediation action items for various platforms environments and technologies
• Collaborate with internal teams external partners and vendors to resolve active Cyber Incidents
• Provide detailed timeline analysis to showcase evidence-based conclusions on entry vectors lateral movement and campaign correlation
• Keep detailed notes on all analysis activity documented in the case management tool to validate process adherence.
• Contribute to the strategic creation and updating of new and existing response process documentation.
• Provide On-Call support for escalated events for 1 week on rotation with other Incident Responders

• Bachelor's Degree/Masters Degree in an IT related field and/or equivalent work experience
• Minimum 5 years working in Cyber Defense with experience in Incident Response Security Operations Center (SOC) detection engineering or similar functions.
• Previous experience supporting or leading incident response functions.
• Experience using industry-standard security toolsets in a layered defense model
• Working knowledge of core Enterprise IT concepts (web application architectures networking etc.)
• Experience with host-based and network-based forensics tools and analysis
• Knowledge of the cyber threat landscape to include different types of adversaries campaigns and the motivations that drive them
• Knowledge of industry recognized security and analysis frameworks (Mitre ATT&CK Kill Chain Diamond Model NIST Incident Response etc.)
• Exceptional written and verbal communication skills
• Must be self-motivated and able to work both independently and as part of a team
• Strong communication (both verbal and written) and client intimacy skills with experience briefing corporate executives and professionals
• Ability to be on call and provide support during non traditional working hours

• Previous experience acting as a Lead for a Cyber Security Team
• Hands on experience working with Incident Response and Threat Monitoring SOC functions
• Previous experience providing incident response or SOC support for Fortune 1000 companies

What We Do

From film television news theme parks interactive media and streaming our people are at the center of it all. ​Here we solve complex and business-critical problems. That’s why we’re looking for people to help us continue our evolution imagining and delivering the most innovative and disruptive products and services through the latest tech advancements in the industry. ​ Here you can develop solutions. You’ll develop solutions that allow engineers to broadcast live TV from the comfort of their homes. These solutions will enable the use of our collection of hundreds of thousands of distinct intellectual properties across our film television and streaming brands. Here you can transform. You’ll make decisions and solve complex problems by leveraging insights that come from data building AI to help enable solutions to optimize every aspect of our content eco-system. Here you can build. You’ll build emerging immersive technologies that are used to power the broadcasts and streaming of global events like the Super Bowl and Olympics. You can create secure elastic cloud-based services connecting parts of our global platform ecosystem that effect tens of millions of viewers consumers and businesses that consume and love NBCUniversal’s content. And while you design build and architect your career we have the culture to make sure you’re supported. Here you can work and still live your best life! We’re leaders in our fields. We hire smart people and trust them to get the job done. We are never too busy to develop a fellow colleague. We understand our goals – or we ask. When we see something that needs doing – we do it. We make data-driven decisions. We fiercely believe in our talent and their growth. If you're ready to make an impact here you can.

Why Work With Us

For us it's more than just a work life. It's a daily passion. We take great pride in our legacy. We find fun in the challenge. We collaborate and inspire others. We're always creating always solving and always ahead of competition.

Gallery