Cyber Threat Defense

Associate Principal, Cyber Defense

Associate Principal, Cyber Defense

SALARY: $150K - $165K PLUS 15% BONUS

Hybrid: 3 days on site, 2 days remote

SELLING POINTS: cyber security analysis digital computer forensics incident response application security operating system windows Linux cryptographic controls network programming language incident response web applications Firewall and security orchestration automation response tools network sniffers packet tracing tools DSS NAI SnifferPro ethereal and tcp dump

The Associate Principal, Cyber Defense will help plan actions and lead security professionals in the analysis and determination of threats to the enterprise, vulnerabilities in the environment, and how our company will best defend itself against these threats. Position will enhance the process around monitoring third-party security-related feeds, websites, forums, and mailing lists for information regarding cyber threats, vulnerabilities, and exploits.

Primary Duties and Responsibilities:

1. Incident Management and Security Analysis:
2. Lead cyber security incident responders in response activities including investigation, coordination, review, and reporting.
3. Oversee technical analysis of security events while coordinating incident response activities with internal and external teams.

Qualifications:

1. Incident Response playbook development managing incident analysis and remediation.
2. Network sniffers and packet tracing tools (DSS, NAI SnifferPro, Ethereal and tcpdump).
3. Standard technical writing tools including MS Word, Excel, Project and Visio

Education and/or Experience:

1. Minimum three years of information security experience, preferably in the financial services industry.
2. Minimum two years hands-on security operations experience including interdisciplinary experience with four or more of the following: Cyber Threat Analysis, Digital Computer Forensics, Incident Response, Application Security, Operating Systems Security, Cryptographic Controls, Networking, Programming languages, Incident Response
3. Minimum one year in a leadership role or team/project lead capacity.
4. Technical experience and comprehensive knowledge of threat actor capabilities, intentions, methodologies, and motives.
5. Familiarity with computer network exploitation and network attack methodologies.

Industry knowledge of leading-edge security technologies and methods