Note: The job is a remote job and is open to candidates in USA. Ryder System, Inc. is seeking a Senior Security Operations Center Analyst responsible for planning and implementing security measures to protect computer systems, networks, and data. This role involves monitoring network traffic for security events, handling security investigations, and delivering cyber intelligence services to IT and business leaders.
Responsibilities
- Participate in threat hunting activities to proactively search for threats in the enterprise environment
- Participate in the creation and maintenance of use cases for recurring investigation/incident triggers in support of the 24/7 Cyber Threat Operations and Cyber Threat Management program
- Participate in the creation and maintenance of playbooks used in response for investigation/incident triggers in support of 24/7 Cyber Threat Operations and Cyber Threat Management program
- Act as coordinator in the event of escalated cyber threats/incidents for Tier 1 analysts
- Assist in escalated computer security incidents and cyber investigations including computer forensics, network forensics, root cause analysis and malware analysis
- Interface with other teams in Information Security (e.g., EIS Engineering, Security Architecture, GRC) along with information and liability risk officers and technology management to help guide cyber security strategy
- Work with team members to enhance and enrich security monitoring tools with contextual information
- Provide mentoring for junior level analysts
- Adhere to all policies and standards, as well as regulatory requirements regarding reporting and escalations
- Publish actionable threat intelligence for business and technology management
- Identify new threat tactics, techniques and procedures used by cyber threat actors
- Performs other duties as assigned
Skills
- Bachelor's degree required in Information Assurance, Computer Science, Engineering, or related technical field
- Three (3) years or more experience in information security administration, offensive tactics, monitoring, and IR
- Three (3) years or more experience related security systems administration with endpoint, network, application, and host-based security solutions
- Knowledge of the incident handling procedures and intrusion analysis models
- Foundational knowledge of processes, procedures and methods to research, analyze and disseminate threat intelligence information
- Demonstrated advanced knowledge of cyber security operations with a focus area in two or more of the following: Security Operations Center (SOC) operations, Intrusion Detection/Intrusion Prevention Systems (IDS/IPS), Security Information and Event Management (SIEM) use, threats (including Advanced Persistent Threat (APT), insider) vulnerabilities, and exploits; incident response, investigations and remediation
- Broad knowledge of general IT with a focus area in two or more of the following areas: operating systems, networking, computer programing, web development or database administration
- Two (2) years or more Cloud computing (e.g., Amazon Web Services, Google Cloud Platform or Microsoft Azure) security configuration and management experience preferred
Benefits
- Comprehensive health and welfare benefits, to include medical, prescription, dental, vision, life insurance and disability insurance options
- Paid time off for vacation, illness, bereavement, family and parental leave
- A tax-advantaged 401(k) retirement savings plan
- Annual bonus, commission, and/or long-term incentive plan based on the level and/or type
- For all Full-time positions only
Company Overview
Company H1B Sponsorship