Threat Level: green Handler on Duty: Guy Bruneau

SANS ISC: InfoSec Jobs InfoSec Jobs

Participate: Learn more about our honeypot network
https://isc.sans.edu/honeypot.html

Sign Up for Free!   Forgot Password?
Log In or Sign Up for Free!
Incident Response Analyst
Company Eaton
Location Cleveland or Remote
Preferred GIAC Certifications GCIH, GCIA, GCFA
Travel 10%
Salary Depends on Experience
URL https://jobs.eaton.com/jobs/095970?lang=en-us&previousLocale=en-US
Contact Name Apply via link please
Contact Email apply/at/companypage.co
Expires 2021-07-21

Job Description

oin Eaton’s Information Technology team and help positively impact our business through leading technologies, exciting and challenging enterprise projects and new platforms. We are currently seeking a Incident Response Analyst to join our Architecture, Governance, and Security Center of Excellence (AGSCOE) team. No relocation is being offered for this position. The candidate will be based at any Eaton facility in the US. If the candidate resides within 50 miles of Beachwood, Ohio, the candidate must work at that site. If the candidate resides more than 50 miles away from Beachwood, Ohio, the candidate will work from a remote Eaton facility or an approved home office.



The Incident Response Analyst will be responsible to identify and analyze cyber threats / incidents as part of Eaton’s Cyber Security Incident Response Team (CSIRT). This role plays a key role in the Prevent, Detect, Respond strategy to protect Eaton’s intellectual property and brand in a highly complex, global, multi-technology, regulated and diversified business environment.

Making what matters work at Eaton takes the passion of every employee around the world. We create an environment where creativity, invention and discovery become reality, each and every day. It’s where bold, bright professionals like you can reach your full potential—and where you can help us reach ours. In this role, you will:



Understand CSIRT functions and participates in threat analysis, escalation, and remediation at an incident or threat level
Work alarms, cases or incidents from the Level 1 SOC analysts, perform in-depth analysis and triage of threat activity
Execute ITSM processes (Change, Request, Incident, Problem management) on technical IT systems at the component level
Perform Threat Hunting based on emerging IOCs or vulnerabilities
Provide intermediate analysis, incident detection, and escalation to Level 3 Analyst or CSIRT Manager using documented procedures
Refine and maintain incident and alarm rules to focus detection operations
Complete detailed forensic examination and analysis of computers, hard drives and digital media
Conduct forensic collections and searching for e-discovery and litigation matters
Regularly update operating procedures to improve efficiency and effectiveness of incident response, e-discovery, internal investigations, intel and/or penetration testing
Execute activities to eliminate malware, advanced persistent threats within a remediation event
Execute project tasks to enhance CSIRT capabilities


When we embrace the different ideas, perspectives and backgrounds that make each of us unique, we — as individuals and as a company — are stronger.

We are committed to ensuring equal employment opportunities for all job applicants and employees. Employment decisions are based upon job-related reasons regardless of an applicant's race, color, religion, sex, sexual orientation, gender identity, age, national origin, disability, marital status, genetic information, protected veteran status, or any other status protected by law.

Qualifications
Basic Qualifications:

Bachelor’s Degree from an accredited institution is required.
Minimum 2 years of experience in information technology or technology-centric role is required
Candidate must be authorized to work in the US on a continuous basis without company sponsorship
This position requires use of information or access to hardware which is subject to the International Traffic in Arms Regulations (ITAR). All applicants must be U.S. persons within the meaning of ITAR. ITAR defines a U.S. person as a U.S. Citizen, U.S. Permanent Resident (i.e. 'Green Card Holder'), Political Asylee, or Refugee.


Preferred Qualifications:

Bachelor’s degree in a technical discipline such as: B.E / BTech / MCA / Equivalent (EITC) or B.S. Comp Sci / Mathematics / Engineering / Equivalent
Understanding of forensic, endpoint and network security technologies
1+ years of experience in creating customized detection signatures and alerts for enterprise monitoring tools
1+ years of experience in conducting forensic examinations for internal investigations or e-discovery matters
1+ years of experience in correlating events from multiple sources to detect suspicious and/or malicious activity.
Understanding of Cyber Security with relevant work experience and/or relevant certifications.
Understanding of common threats, penetration/intrusion techniques and attack vectors.
Working knowledge of a broad range of current IT platforms and technologies.
Strong analytical and problem-solving skills


We are committed to ensuring equal employment opportunities for all job applicants and employees. Employment decisions are based upon job-related reasons regardless of an applicant's race, color, religion, sex, sexual orientation, gender identity, age, national origin, disability, marital status, genetic information, protected veteran status, or any other status protected by law.



Eaton provides a competitive total rewards package commensurate with applicable skills, knowledge, and experience and consistent with internal and external market practices. The annual salary range for this role is $80,000 - $108,000 a year, with flexibility based on experience and skill level.

At Eaton, we know that good benefit plans are important to employees and their families. In addition to a competitive base salary, Eaton provides various Health and Welfare benefits as well as Retirement benefits. Click here for more detail: Eaton Benefits at a Glance.



We make what matters work. Everywhere you look—from the technology and machinery that surrounds us, to the critical services and infrastructure that we depend on every day—you’ll find one thing in common. It all relies on power. That’s why Eaton is dedicated to improving people’s lives and the environment with power management technologies that are more reliable, efficient, safe and sustainable. Because this is what matters.

We are confident we can deliver on this promise because of the attributes that our employees embody. We’re ethical, passionate, accountable, efficient, transparent and we’re committed to learning. These values enable us to tackle some of the toughest challenges on the planet, never losing sight of what matters.

Job: Information Technology

Region: North America – US/Puerto Rico
Organization: Corporate Sector

Job Level: Individual Contributor
Schedule: Full-time
Is remote work (i.e. working from home or another Eaton facility) allowed for this position?: Yes
Does this position offer relocation?: No
Travel: Yes, 10 % of the Time