Security Incident Analyst – Global Security Operations Centre

Hewlett-Packard Company

Hewlett Packard Company provides equal employment opportunity to any employee or applicant without regard to sex, gender, color, race, ethnicity, religion, creed, national origin, ancestry, citizenship, age, marital status, sexual orientation, gender identity and expression, physical or mental disability, medical condition, pregnancy, protected veteran status, uniformed service status, familial status, genetic information, political affiliation, or any other characteristic protected by federal, state, or local law.

HP Enterprise Security Services is seeking to identify highly motivated and qualified individuals for various future opportunities in their Global Security Operations Centre 

 

In anticipation of these opportunities becoming available, completing a profile will allow us to evaluate your qualifications and interests and will allow us to stay connected.

 

Description
The Incident Analyst is an integral part of the Security Incident Response Process within the Global Security Operations Centre. The primary function of the role will be to provide a technical escalation point during Security Incidents, establishing the extent of the threat, the business impacts and advising the most suitable course of action to contain and remedy the incident. Outside of the Incident Process the Incident Analyst is expected to maintain a good knowledge of the Current Threat Landscape, help enhance current techniques and identify new methods of detecting threats on our customers’ networks. As a Security Incident Analyst you must also demonstrate the ability to communicate effectively with the other key stakeholders in the incident process.
 
Responsibilities
Perform detail analysis of events during the incident process, combining sound analytical skills with advanced knowledge of IT Security and Network Threats.
Provide subject matter expertise to colleagues and projects outside of GSOC.
Participate in knowledge sharing with other Analysts and writing technical articles for Internal Knowledge Bases.
Develop and maintain a strong relationship with the Client Security Teams.
Perform other essential duties as assigned.

Qualifications & Experience

An active interest in Internet Security, incident detection, network and systems security.

Prepared to become SC and DV cleared.

Experience or qualifications in network and systems monitoring.

 

Essential Skills

A motivated, self-managed, individual who can demonstrate above average analytical skills and work professionally with peers and customers even under pressure.

A sound knowledge of IT security best practices, common attack types and detection / prevention methods.

Demonstrable experience of analysing and interpreting system, security and application logs in order to diagnose faults and spot abnormal behaviour.

Experience of maintaining a secure network through configuring and managing typical Security Enforcing Devices, such as Firewalls, IDS/IPS devices and knowledge of the type of events they produce.

In depth experience of other common devices, such as routers and switches.

Troubleshooting Windows environments.

Strong written and verbal communication skills.

 

Desirable Skills

Exposure to IT service management best practices such as ITIL.

Experience of using SIEM tools such as ArcSight, LogLogic & Envison.

Experience of mentoring or coaching members of a team.

An understanding of Information Security; relating to the Confidentiality, Integrity and availability of information.

 



See full job details and apply at employer site