Job Number: 9311 Job Number: 240000ID External Description: At Equitable, our power is in our people. We're individuals from different cultures and backgrounds. Those differences make us stronger as a team and a force for good in our communities. Here, you'll work with dynamic individuals, build your skills, and unleash new ways of working and thinking. Are you ready to join an organization that will help unlock your potential? Description of Responsibilities:
- Escalation Management - Manage and resolve escalations from the Security Operations Center
- Cyber-Crisis Management and Communications - Manage and resolve significant incidents and communicate to leadership. Assist in tabletop exercises and other Cyber training events.
- Sensitive Investigations - Manage and direct effort related to sensitive investigations
- Visibility Management - Manage overall visibility concerns and direct effort to effect gap resolution
- Process Development - Develop and Maintain Incident Response processes
- Technology Research - Continuously evaluate and propose new technology and approaches to ensure that the organization is protected efficiently while enabling the Security Operations Center to have increased detection, response and eradication capabilities.
- Lead small to medium size projects as directed by management.
The base salary range for this position is $87,000 - $114,000. Actual base salaries vary based on skills, experience, and geographical location. In addition to base pay, Equitable provides compensation to reward performance with base salary increases, spot bonuses, and short-term incentive compensation opportunities. Eligibility for these programs depends on level and functional area of responsibility. For eligible employees, Equitable provides a full range of benefits. This includes medical, dental, vision, a 401(k) plan, and paid time off. For detailed descriptions of these benefits, please reference the link below. Equitable Pay and Benefits: Equitable Total Rewards Program
Required Qualifications: - 3 years of experience with SIEM platforms, including writing queries, data modeling and saved searches
- 3 years of experience with EDR and AV platforms, including containment and memory analysis
- 3 years of experience with Firewall and IDS/IPS platforms, including traffic analysis and pcap analysis
- 1 years of experience with Forensics platforms, including disk imaging, image and memory analysis
- 1 years of experience managing Cyber Events, including response, containment and eradication activities
- 1 years of experience writing After-Action/Lessons Learned reports and communicating remediation actions with leadership and IT business partners
Preferred Qualifications:
- Skilled at providing guidance and direction concerning preparations necessary to aid in the prevention and early detection of and response to Cyber events.
- Deep understanding of access controls, authentication methodologies and directory services concepts including Active Directory, Azure AD and GPO, Linux rights management and access controls
- Deep knowledge of Cloud Services architecture and Security methodologies
- Experience Leading small to medium size IT and Cybersecurity projects.
- Demonstrate proficiency in event analysis and tool utilization.
- Ability to identify compromised systems using logs, live response, and related computer-centric evidence sources
- Exhibit willingness to learn, a desire to collaborate with others, and the drive to take on additional responsibilities when called upon.
Agile Methodologies: Knowledge of concept and principles of agile methodology; ability to apply appropriate agile approaches in the processes of software development and delivery.
Confidentiality: Knowledge of practices and policies governing disclosure of information about the organization, its business activities, and employees; ability to apply this knowledge appropriately to diverse situations.
Industry Knowledge: Knowledge of the organization's industry group, trends, directions, major issues, regulatory considerations, and trendsetters; ability to apply industry knowledge appropriately to diverse situations.
Information Security Management: Knowledge of the processes, tools and techniques of information security management; ability to deploy and monitor information security systems, while detecting, controlling and preventing violations of IT security.
IT Governance: Knowledge of the accountability framework and processes used to encourage proper behavior in IT activities and operations; ability to implement IT systems and controls to meet business needs and requirements.
Diversity, Equity and Inclusion: Demonstrates a commitment to Diversity, Equity and Inclusion by treating everyone with respect and dignity, ensuring all voices are heard and advocating for change. ABOUT EQUITABLE At Equitable, we're a team of over ten thousand strong; committed to helping our clients secure their financial well-being so that they can pursue long and fulfilling lives. We turn challenges into opportunities by thinking, working, and leading differently - where everyone is a leader. We encourage every employee to leverage their unique talents to become a force for good at Equitable and in their local communities. We are continuously investing in our people by offering growth, internal mobility, comprehensive compensation and benefits to support overall well-being, flexibility, and a culture of collaboration and teamwork. We are looking for talented, dedicated, purposeful people who want to make an impact. Join Equitable and pursue a career with purpose. Equitable is committed to providing equal employment opportunities to our employees, applicants and candidates based on individual qualifications, without regard to race, color, religion, gender, gender identity and expression, age, national origin, mental or physical disabilities, sexual orientation, veteran status, genetic information or any other class protected by federal, state and local laws. NOTE: Equitable participates in the E-Verify program. If reasonable accommodation is needed to participate in the job application or interview process or to perform the essential job functions of this position, please contact Human Resources at (212) ###-#### or email us at
[email protected] . Community / Marketing Title: Information Security Senior Incident Responder Location_formattedLocationLong: Syracuse, New York US