#Cyber #Security Analyst

Description

POSITION SUMMARY:
Anticipates, identifies, and analyzes cyber threats, denial-of-service attacks and automation fraud to help protect the organization from harmful activity against of Staples websites. May participate in developing prevention and remediation techniques. Contains routine threats and may assist with containment of more severe and complex threats and remediation of environment during or after an incident. Maintains understanding of the current threat landscape and conducts research on emerging security threats and potential impact. Implements activities that generally impact discrete components / processes of the work of own unit / team / projects. Demonstrates proficiency in several areas of the professional function. Effectively resolves problems and roadblocks as they occur. Interacts with internal and external peers and/or managers to exchange semi-complex information related to assigned activities. Receives work in the form of short-term assignments that often require the application of independent judgment. Work is subject to regular supervisory review at regular intervals. Operates within the context of defined procedures.
RESPONSIBILITES SPECIFIC TO ROLE:
Exciting role of Senior Security Analyst for the Website Protection team, performing the role of a cyber security Tier 2 analyst. Responsible for the daily operational aspects of website security incidents and activities. Embedded within the Staples SOC, working with other SOC analysts as a ‘website-specialist’. Dealing with daily bot mitigation, whitelisting, SIEM alerts, false-positive analysis and investigation of abnormal traffic patterns impacting our websites and mobile applications. Conduit for SOC to all the website application monitoring teams, as well as the online fraud team.
Ability to provide a deeper investigation into abnormal traffic patterns. This will lead to recommending mitigation actions (both proactive and reactive) to stop both current and future attempts. Document and record all activities.
As a website specialist, this role will support the following activities for Staples websites:
  • Handling of events such as identifying security issues, extensive troubleshooting, and coordinating resolutions using a variety of applications and testing tools
  • Professionally and courteously answer inbound security-related calls and provide clients with the best possible customer service and experience
  • Ability to provide website incident resolutions, while ensuring that customer traffic is not impacted
  • Individual must be able to perform with minimal supervision of routine duties
  • Creation of trouble tickets for minor issues and the management of security incident tracking
  • Initial classification & severity labeling of each new incident
  • Conduct the initial investigation of incidents based on priority and/or severity level, as well as service-level agreements (SLA)
  • Recognize potential attack and online fraud attempts and compromises (both successful and unsuccessful) thorough analysis of relevant events
  • Identify, analyze and document actions taken by known threat actors
  • Escalate high priority events and/or critical incidents to the appropriate teams
  • Provide alert triage and analysis
  • Collaboration with technical teams outside of SOC environment, including web application teams, website support & monitoring teams, online fraud team and customer call centers.

Qualifications

KNOWLEDGE/SKILL REQUIREMENT:
  • Bachelors of Science or 3+ years of related work experience.
  • Strong problem solving and analytical skills with the aptitude for automation
  • Working knowledge of a variety of security technologies (e.g., IDS / IPS, Firewall, Proxies, Anti-Virus).
PREFERRED SKILLS:
  • Strong understanding of web applications, HTTP Request/Response and traffic monitoring
  • Experience monitoring website traffic; retail environment preferred
  • Familiarity of security methodologies, tactics, and techniques
  • Understanding of Incident Handling
  • Understanding of Security Incident and Event Management system (SIEMs)
  • Understanding of networking protocols (HTTP(S), TCP/IP, DNS, TLS/SSL)
  • General understanding of security technologies (Firewalls, IDS/IPS, Proxies, etc.)
  • Basic understanding of the OSI model
  • Familiar with Akamai CDN
  • Experience with Splunk Enterprise Security
  • ServiceNow
QUALITIES:
  • Ability to monitor and track multiple issues simultaneously
  • Must be able to act promptly, calmly and decisively in stressful situations
  • Excellent verbal and written communication skills
  • Collaborates well with others in a strong team-based environment
  • Ability to present analysis results and findings in an organized and professional manner
  • Maintain professionalism while present within or outside of a corporate environment
  • Must be able to execute, follow and respond to delegated tasks and assignments

Staples is an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, age, sex, sexual orientation, gender identity, national origin, protected veteran status, disability, or any other basis protected by federal, state, or local law.

Source:indeed