CMA CGM
Cyber Defense Specialist
SAP America, Inc. seeks a Cyber Defense Specialist at our Newtown Square, PA location to identify, analyze, assess, and mitigate threats to information technology (IT) systems and/or networks in the context of implications to SAP. Triage security alerts detected by Enterprise Detection and SIEM, analyze data to determine if a cyber-attack is occurring, scope the extent of a suspected attack, coordinate efforts to contain attacks, and providing guidance on remediation actions. Perform Incident Response Tier II duties as a part of a cyber incident response team. Leverage SAP's security tools to monitor, triage, and respond to security event alerts. Communicate updates to stakeholders both within and outside security. Perform intrusion scope and root cause analyses. Handle critical severity incidents as described in the operations runbook. Coordinate with Intelligence Analysts to correlate threat assessment data. Perform cyber defense trend analysis and reporting. Track and document cyber defense incidents from initial detection through final resolution, including cyber defense techniques used and lessons learned. Collect intrusion artifacts and use discovered data to enable mitigation of potential cyber defense incidents within the enterprise. Develop incident handling processes, standard operating procedures, playbooks, and runbooks. Bachelor's degree or foreign equivalent in Cyber Security, Computer Science, Engineering or a related field of study and five (5) years of progressive post-baccalaureate experience in the job offered or related occupation. Alternatively, a Master's degree or foreign equivalent in Cyber Security, Computer Science, Engineering or a related field of study and three (3) years of experience in the job offered or related occupation. Experience must involve two (2) years in the following: SIEM Administration and Operations, including Splunk, McAfee ESM, or Qradar; Computer Forensics for Windows; Microsoft Office 365 Security Technologies. Position also requires experience in each of the following: Cloud Security, including Microsoft Azure Security; Endpoint Security including McAfee ENS or Defender AV Detection and Response tools; Malware Analysis, Reverse Engineering, and programming.
SAP America, Inc. seeks a Cyber Defense Specialist at our Newtown Square, PA location to identify, analyze, assess, and mitigate threats to information technology (IT) systems and/or networks in the context of implications to SAP. Triage security alerts detected by Enterprise Detection and SIEM, analyze data to determine if a cyber-attack is occurring, scope the extent of a suspected attack, coordinate efforts to contain attacks, and providing guidance on remediation actions. Perform Incident Response Tier II duties as a part of a cyber incident response team. Leverage SAP's security tools to monitor, triage, and respond to security event alerts. Communicate updates to stakeholders both within and outside security. Perform intrusion scope and root cause analyses. Handle critical severity incidents as described in the operations runbook. Coordinate with Intelligence Analysts to correlate threat assessment data. Perform cyber defense trend analysis and reporting. Track and document cyber defense incidents from initial detection through final resolution, including cyber defense techniques used and lessons learned. Collect intrusion artifacts and use discovered data to enable mitigation of potential cyber defense incidents within the enterprise. Develop incident handling processes, standard operating procedures, playbooks, and runbooks. Bachelor's degree or foreign equivalent in Cyber Security, Computer Science, Engineering or a related field of study and five (5) years of progressive post-baccalaureate experience in the job offered or related occupation. Alternatively, a Master's degree or foreign equivalent in Cyber Security, Computer Science, Engineering or a related field of study and three (3) years of experience in the job offered or related occupation. Experience must involve two (2) years in the following: SIEM Administration and Operations, including Splunk, McAfee ESM, or Qradar; Computer Forensics for Windows; Microsoft Office 365 Security Technologies. Position also requires experience in each of the following: Cloud Security, including Microsoft Azure Security; Endpoint Security including McAfee ENS or Defender AV Detection and Response tools; Malware Analysis, Reverse Engineering, and programming.