Posted: Saturday, February 3, 2018 3:46 PM
Req ID: 17602
Experience Level: Professional
Other Location(s): N/A
Come grow with us
At Capital Group, how we work is defined by shared values that include absolute integrity, respect and collaboration. But its more than that. Its smart and highly driven people united in purpose to serve our investors and one another.
Bring your energy and unique perspective to Capital and youll have the opportunity to grow with us professionally, personally, and financially. Youll be part of a team that genuinely cares about helping you succeed. Youll work alongside talented colleagues, many of whom build long careers while progressing through multiple roles, establishing lifelong friendships and making a difference in our communities. In return for your contributions, youll receive premier compensation and benefits, and a company:funded retirement plan that ranks among the most generous.
Capital Group is looking for a Senior Information Security Analyst to join our world:class Cyber Incident Response Team. Capital Groups Cybersecurity Response Team systemically detects and responds to security threats by seeking actionable intelligence from our internal and external environments in order to protect Capital Groups sensitive information and critical infrastructure. They use state of the art technology in a custom built operations center in San Antonio, TX. Members of the team are highly motivated, professionally respected and regularly brief at global cybersecurity conferences about our capability.
We are looking for a highly motivated, security focused and technical authority to be a cyber:incident response lead at Capital Group. The successful candidate will have an extensive background in penetration testing and ethical hacking and he or she will help shape our Cyber Incident Response team through the use of developed understanding of attacker capabilities and intent.
The role will include:
* Extensive purple team lab work emulating attacks and working with the detection team to create and test actionable alerts for our production environment.
* Providing response to high:severity, escalated incidents from our tiered incident response team where deep technical knowledge during response will be very important.
* Leadership of the Incident Response process and mentoring of lower tier analysts.
Simulate active attacks in a lab environment and work with our detection team to create actionable alerts for the production environment.
Remain up:to:date on the latest hacker capabilities through training, study and with the help of our dedicated cyber:intelligence team.
Test production alerts for efficacy against hacker capability.
Deliver value to the business by reducing the risk of compromise through incident response.
Develop, mature and streamline incident response playbooks.
Prepare incident reports of analysis methodology and results.
Guide the triage team, ensuring that incidents are properly analyzed, cataloged and escalated (as appropriate) into incidents.
Maintain and promote the high standards required of a world class cyber defense capability.
Identify, prioritize and implement new tools and processes.
Engage with security projects and roadmaps to ensure IR requirements are captured and delivered.
Gather, analyze and maintain forensics to support investigative, risk and mitigation efforts.
Provide leadership and mentoring to less:experienced team members.
Collect and communicate metrics and incident reports verbally and in writing to a high standard.
Conduct threat:hunting activities to identify, analyze and report on activity and trends that could be indicative of risk.
5+ years of experience in one or more of the following areas: cyber security, incident response/management, or relating to the field of Information S
• Location: San Antonio
• Post ID: 35634777 sanantonio