GSOC Senior Threat Detection Analyst
- 701 Experian Pkwy, Allen, TX 75013, USA
- Department: Information Technology & Systems
- Role Type: Hybrid
- Employee Status: Regular
- Schedule: Full Time
- Shift: Day Shift
- Flexible Time Off: 15 Days
Experian is the world’s leading global information services company, unlocking the power of data to create more opportunities for consumers, businesses and society. We are thrilled to share that FORTUNE has named Experian one of the 100 Best Companies to work for. In addition, for the last five years we’ve been named in the 100 “World’s Most Innovative Companies” by Forbes Magazine.
Experian’s Global Security Operation Center (GSOC) is seeking a Threat Detection Analyst Level 1. The Threat Detection Analyst L1 is responsible for monitoring the alert stream, conducting the initial assessment and information gathering on security incidents, leveraging various analytical tools, and triage and escalation of security incidents to senior analysts if applicable. These individuals also work closely with a number of cybersecurity teams, technical SMEs, and business unit contacts.
Below is the list of GSOC Threat Detection Analyst L1 main tasks:
- Monitor alerts and investigate incidents using SIEM and UEBA technologies, packet captures, reports, data visualization, and pattern analysis.
- Analyze, escalate, and assist in remediation of critical information security incidents.
- Improve and challenge existing processes and procedures in a very agile and fast-moving information security environment.
- Security analysts should have expert knowledge of:
- Information security policies and goals
- Log analysis and event traffic patterns
- The current IT threat landscape and upcoming trends in security
A bachelor’s degree is not required, but a degree program with an emphasis on the technical aspects of cybersecurity is very beneficial.
2+ years’ experience in the following areas:
Demonstrates practical understanding and hands-on knowledge at:
- TCP/UDP/IP networking, familiarity with packet analysis tools such as WireShark, and a general understanding of networking and security protocols
- Network operations or engineering components while assessing and troubleshooting issues
- System administration on Unix, Linux, or Windows
- Willingness to acquire in-depth knowledge of network- and host security technologies and products (such as firewalls, network IDS, scanners) and continuously improve these skills
- Security monitoring technologies, such as SIEM, IPS/IDS, UEBA, DLP, among others.
Demonstrates behavioral skills, such as:
- Demonstrated ability to work in a team environment
- Strong written and verbal communication skills (e.g. experience documenting incidents, technical writing, project documentation, etc.)
- Excellent analytical and problem-solving abilities
- Originating action and ideas to improve existing conditions and processes
- Establishing an action plan for self to complete work efficiently and on time by setting priorities, establishing timelines, and leveraging resources.
- Demonstrated ability to actively learn and research cybersecurity threats and alerts, identifying new areas for learning; regularly creating and taking advantage of learning opportunities; using newly gained knowledge and skill on the job and learning through their application.
- Taking full advantage of opportunities to receive and explore feedback about own performance; responding favorably to feedback and using it constructively to take action to improve knowledge, skills, behavior, and impact on others.
- Well established client-focused communication skills that requires to read, review, investigate, and summarize reports on complex issues, in a manner that can be understood by non technical readers.
- 1+ years of information security related experience, in areas such as: security operations, incident analysis, incident handling, and vulnerability management or testing, system patching, log analysis, intrusion detection, or security device administration.
- Relevant technical and industry certifications are a plus, e.g. Security+, GIAC certifications, SIEM vendor-specific certifications
Culture at Experian
Our uniqueness is that we truly value yours.
Experian's culture, people and environments are key differentiators. We take our people agenda very seriously. We focus on what truly matters; diversity and inclusion, work/life balance, flexible working, development, engagement, collaboration, wellness, reward & recognition, volunteering... the list goes on
We’re an award-winning organization due to our strong people focus
Experian isn't just growing, we're leveraging cutting edge data science, design thinking and passion to build tomorrow's credit solutions. Innovation is a critical part of Experian's DNA and culture
Experian is proud to be an Equal Opportunity and Affirmative Action employer. Our goal is to create a thriving, inclusive and diverse team where people love their work and love working together. We believe that diversity, equity and inclusion is essential to our purpose of creating a better tomorrow. We value the uniqueness of every individual and want you to bring your whole, authentic self to work. For us, this is The Power of YOU and it ensures that we live what we believe.