Cyber Incident Responder and Threat Hunter

Cyber Incident Responder and Threat Hunter

Guardian provides life insurance, disability insurance, dental insurance, and other benefits that help protect people and inspire their well-being.

Do you want to be part of a collaborative problem-solving cyber security team? Guardian is looking for a cyber incident responder who demonstrates curiosity, tenacity, follow-through and an analytical mindset to join the Cyber Incident Response and Threat Services team.

You will execute the cyber security incident response strategy for the enterprise by defending and protecting Guardian’s technology assets. A self-starter who is fueled by inquisitiveness, collaboration, process improvement, and attention to detail to rapidly respond to any ongoing or emerging threats that Guardian faces. The right individual will partner across the Security Service Organization & company to ensure Guardian’s assets are well protected and defended against cyber threats. The successful candidate must live by the Guardian success factors of acting with accountability, leading with the customer at the center, committing to collaborate, communicating with transparency and connecting with empathy and compassion.

You have

• 2-7 years of cybersecurity experience, including cyber defense, incident response and digital forensics.
• Knowledge of data loss prevention, endpoint protection, SIEM, digital forensics with Windows and Linux, as well as an understanding of cloud, network, web, database & data.
• Ability to work within a diverse high performing team.
• Excellent analytical and problem-solving skills; the ability to analyze complex data and identify actionable insights.
• Ability to communicate at all levels of the organization and collaborate across multiple teams.
• Experience with Splunk, endpoint detection and data loss prevention tools.
• Possess an Associates or Bachelors in relevant experience in cyber security and/or industry certifications.

You will

• Be responsible for cyber incident response, acting swiftly to identify, contain and eradicate security incidents.
• Conduct thorough investigations of security events and coordinate recovery efforts with other organizations to restore normal operations.
• Create detailed reports on incident response activities, findings, and recommendations, as well as maintain accurate records of investigations and outcomes.
• Respond to Data Loss Prevention (DLP) events to prevent unauthorized access and exfiltration of sensitive data.
• Proactively search for cyber threats within the network using advanced tools and techniques, including DLP, EDR and SIEM. Identify patterns, anomalies, and potential indicators of compromise.
• Perform forensic analysis on compromised systems. Collect and preserve evidence in accordance with legal and regulatory requirements.
• Stay abreast of current and emerging trends that threaten the organization.
• Identify use cases for detection engineering to further Guardian’s security posture of defense in depth.
• Provide Tier 2 support for Cyber Defense Operations Team, working closely to identify and respond to potential threats.
• Participate in 24x7 on-call support rotation.
• Track and manage work within Agile Framework.

Location

• Two Days a week at a Guardian office in Bethlehem, PA, New York, NY, Stamford, CT, Holmdel, NJ

Salary Range

$77,570.00 - $127,430.00

The salary range reflected above is a good faith estimate of base pay for the primary location of the position. The salary for this position ultimately will be determined based on the education, experience, knowledge, and abilities of the successful candidate. In addition to salary, this role may also be eligible for annual, sales, or other incentive compensation.