Posted:
9/20/2024, 10:55:22 AM
Location(s):
Delaware, United States
Experience Level(s):
Junior ⋅ Mid Level
Field(s):
IT & Security
Workplace Type:
Hybrid
Job Description:
DXC Technology (NYSE: DXC) helps global companies run their mission critical systems and operations while modernizing IT, optimizing data architectures, and ensuring security and scalability across public, private and hybrid clouds. The world’s largest companies and public sector organizations trust DXC to deploy services across the Enterprise Technology Stack to drive new levels of performance, competitiveness, and customer experience. Learn more about how we deliver excellence for our customers and colleagues at DXC.com
Job Description:
The Tier 2 Information Security Analyst is responsible for the first line of security incident response in the client SIEM environment. The core responsibilities include the monitoring of client SIEM alerts in real-time, researching threat information, and escalating legitimate security incidents to the client. This position is also a technical escalation resource for the Tier I Information Security Analysts.
Tier 2 analysts provide a further in-depth analysis and focus on incident support and alert handling from Tier 1. They coordinate security monitoring findings with the Threat Intelligence team, vendor partners, and with specific points of contact to obtain a wider analysis of event data and its impact on designated environments.
Tier 2 analysts will utilize various meeting systems and telephone bridges to provide updates on attacks and advise clients on technical countermeasures. Tier 2 analysts will also perform a Root Cause Analysis of an attack. The investigation may continue for an extended period time beyond the resolution of an incident to gather additional information, and coordinate with constituents to determine the event’s extent and severity.
Tier 2 monitoring functions:
Triage: In support of Tier 1 staff OR independently - review, assess and act. May be direct or part of an automated action.
Threshold Monitoring: Actively monitor indicators that are approaching security, service and/or compliance Thresholds. Also included recommendation on the ongoing establishment and adjustment of said thresholds.
Playbooks/Threat Analysis: Execute analysis process as required. Assist in the general maintenance and improvement of the process and/or playbooks.
Active Investigation/Cause Analysis (Who, What, When, Where, How): initiation and follow-through to ensure quality forensic materials are captured. Participate in Root Cause Analysis if required.
Escalation: Maintain the escalation chain integrity and service levels.
Requirements/Experience:
2 – 4 years of relevant experience or equivalent combination of education, certifications, and work experience: undergraduate degree and 1-2 years of relevant experience.
1 – 2 years of Information Technology experience with network technologies, specifically TCP/IP, and related network tools.
Understanding of source code, hex, binary, regular expression, etc.
Experience assisting the development and maintenance of tools, procedures, and documentation.
Strong deductive reasoning, critical thinking, problem solving, and prioritization skills.
Experience with reviewing raw log files, data correlation, and analysis (i.e. firewall, network flow, IDS, system logs).
Experience using SIEM tools, ticketing systems, and performing cyber threat analysis.
Other Requirements:
Remote – must physically work from within the USA
Must be a U.S. Citizen due to government or federal regulations
Fixed 12 hours shifts, 2-2-3 schedule
Full-time hires are eligible to participate in the DXC benefit program. DXC offers a comprehensive, flexible, and competitive benefits program which includes, but is not limited to, health, dental, and vision insurance coverage; employee wellness; life and disability insurance; a retirement savings plan, paid holidays, paid time off.
If you are an applicant from the United States, Guam, or Puerto Rico
DXC Technology is an Equal Opportunity/Affirmative Action employer. All qualified candidates will receive consideration for employment without regard to disability, protected veteran status, race, color, religious creed, national origin, citizenship, marital status, sex, sexual orientation/gender identity, age or genetic information. DXC's commitment to diversity and inclusive selection practices includes ensuring qualified long-term unemployed job seekers receive equal consideration for employment. View postings below.
We participate in E-Verify. In addition to the posters already identified, DXC provides access to prospective employees for the Federal Minimum Wage Poster, Federal Polygraph Protection Act Poster as well as any state or locality specific applicant posters. To access the postings in the link below, select your state to view all applicable federal, state and locality postings. Postings are available in English, and in Spanish, where required. View postings below.
Disability Accommodations
If you are an individual with a disability, a disabled veteran, or a wounded warrior and you are unable or limited in your ability to access or use this site as a result of your disability, you may request a reasonable accommodation by contacting us via email.
Please note: DXC will respond only to requests for accommodations due to a disability.
Recruitment fraud is a scheme in which fictitious job opportunities are offered to job seekers typically through online services, such as false websites, or through unsolicited emails claiming to be from the company. These emails may request recipients to provide personal information or to make payments as part of their illegitimate recruiting process. DXC does not make offers of employment via social media networks and DXC never asks for any money or payments from applicants at any point in the recruitment process, nor ask a job seeker to purchase IT or other equipment on our behalf. More information on employment scams is available here.
Website: https://ioscm.com/
Headquarter Location: Newcastle Upon Tyne, Newcastle upon Tyne, United Kingdom
Year Founded: 2012
Industries: E-Learning ⋅ Education ⋅ Logistics ⋅ Procurement ⋅ Supply Chain Management ⋅ Warehousing