MassMutual
Information Security Consultant, Digital Forensics & Incident Response
MassMutual, Springfield, Massachusetts, us, 01119
The Opportunity
Information Security Consultant, Digital Forensics & Incident Response
Full-Time/Remote
The Digital Forensics & Incident Response (DFIR) team is part of our Security Operations Center (SOC) - MassMutual’s internal security monitoring, detection and response organization tasked with the detection and response to threats on the firm's network.
We are looking for a strong cyber security professional to add to a highly technical security team - someone with a combination of experience and education in cyber incident response, threat detection and response, digital forensics, and red team blue team support.
The Team As a member of the DFIR team, you will work in close collaboration with fellow security analysts, engineers, and other IT security specialists throughout the firm including the Security Operations Center, Threat Intelligence, Offensive Security, Security Platforms Support, Network Security Engineering, Endpoint Security and IAM teams.
The Impact Typical responsibilities include:
Investigate various types of cyber security incidents
Conduct detailed endpoint and network forensic data analysis as part of an investigation
Develop new detection capabilities to identify malicious activity
Take on specialized projects to enhance our capabilities and security toolsets
Perform in depth malware analysis
Mentor junior security analysts and help them to acquire new security skills
The Minimum Qualifications
Bachelor's degree
8+ years experience in Cyber Security Incident Response or related field
Ability to work M-F 3pm-11:30pm Eastern Time schedule
The Ideal Qualifications The ideal candidate will have a well-rounded understanding of endpoint, network and cloud defenses and detection methodologies, forensics, and incident response. They will also have some offensive security experience to allow the ability to think like an adversary. Successful candidates will have experience in one or more of the following areas:
Incident handling, to include experience conducting or managing incident response from small scale to large event coordination in a complex enterprise environment
Endpoint & network forensic analysis, to include analysis of relevant logs and data, and background using a variety of forensic analysis tools
Offensive security, with the ability to think like an adversary when threat hunting and responding to incidents
Threat detection and response, to include the ability to identify gaps in alerting and development of new alert logic
Knowledge of current security threats, techniques, and landscape
Ability to take a security event, perform analysis to help understand the context and piece together the overall narrative of a potential compromise
Experience with system administration in a large enterprise environment, including Windows, macOS and Linux servers and workstations, network administration, cloud administration
GCIH, GCFA, GCFE, GREM SANS Certifications helpful
Experience with penetration testing labs (such as Hack the Box, or Capture the Flag challenges)
Ability to perform static and dynamic malware analysis to understand the nature of malware
BA or BS Computer Science, or a college degree in Cyber Security related field
Passion to learn, as well as a dedication and self-driven desire to keep abreast of latest cybersecurity threats and hacking techniques
Advanced problem-solving skills, and the desire to get your hands dirty
Strong verbal, written, and interpersonal communication skills
Strong project management skills
What to Expect as Part of MassMutual and the Team
Regular collaboration with the Security Operations Center
Focused one-on-one time with your manager
Access to learning content on Immersive, InfoSkills and SANS as well as other informational platforms
Your ethics and integrity will be valued by a company with a strong and stable ethical business with industry leading pay and benefits
Equal Opportunity Employer: MassMutual is an equal employment opportunity employer. We welcome all persons to apply. If you need an accommodation to complete the application process, please contact us and share the specifics of the assistance you need.
#J-18808-Ljbffr
Full-Time/Remote
The Digital Forensics & Incident Response (DFIR) team is part of our Security Operations Center (SOC) - MassMutual’s internal security monitoring, detection and response organization tasked with the detection and response to threats on the firm's network.
We are looking for a strong cyber security professional to add to a highly technical security team - someone with a combination of experience and education in cyber incident response, threat detection and response, digital forensics, and red team blue team support.
The Team As a member of the DFIR team, you will work in close collaboration with fellow security analysts, engineers, and other IT security specialists throughout the firm including the Security Operations Center, Threat Intelligence, Offensive Security, Security Platforms Support, Network Security Engineering, Endpoint Security and IAM teams.
The Impact Typical responsibilities include:
Investigate various types of cyber security incidents
Conduct detailed endpoint and network forensic data analysis as part of an investigation
Develop new detection capabilities to identify malicious activity
Take on specialized projects to enhance our capabilities and security toolsets
Perform in depth malware analysis
Mentor junior security analysts and help them to acquire new security skills
The Minimum Qualifications
Bachelor's degree
8+ years experience in Cyber Security Incident Response or related field
Ability to work M-F 3pm-11:30pm Eastern Time schedule
The Ideal Qualifications The ideal candidate will have a well-rounded understanding of endpoint, network and cloud defenses and detection methodologies, forensics, and incident response. They will also have some offensive security experience to allow the ability to think like an adversary. Successful candidates will have experience in one or more of the following areas:
Incident handling, to include experience conducting or managing incident response from small scale to large event coordination in a complex enterprise environment
Endpoint & network forensic analysis, to include analysis of relevant logs and data, and background using a variety of forensic analysis tools
Offensive security, with the ability to think like an adversary when threat hunting and responding to incidents
Threat detection and response, to include the ability to identify gaps in alerting and development of new alert logic
Knowledge of current security threats, techniques, and landscape
Ability to take a security event, perform analysis to help understand the context and piece together the overall narrative of a potential compromise
Experience with system administration in a large enterprise environment, including Windows, macOS and Linux servers and workstations, network administration, cloud administration
GCIH, GCFA, GCFE, GREM SANS Certifications helpful
Experience with penetration testing labs (such as Hack the Box, or Capture the Flag challenges)
Ability to perform static and dynamic malware analysis to understand the nature of malware
BA or BS Computer Science, or a college degree in Cyber Security related field
Passion to learn, as well as a dedication and self-driven desire to keep abreast of latest cybersecurity threats and hacking techniques
Advanced problem-solving skills, and the desire to get your hands dirty
Strong verbal, written, and interpersonal communication skills
Strong project management skills
What to Expect as Part of MassMutual and the Team
Regular collaboration with the Security Operations Center
Focused one-on-one time with your manager
Access to learning content on Immersive, InfoSkills and SANS as well as other informational platforms
Your ethics and integrity will be valued by a company with a strong and stable ethical business with industry leading pay and benefits
Equal Opportunity Employer: MassMutual is an equal employment opportunity employer. We welcome all persons to apply. If you need an accommodation to complete the application process, please contact us and share the specifics of the assistance you need.
#J-18808-Ljbffr