Security Operations Incident Responders Job Listing at AT&T in Herndon, VA
Seeking experienced security operations incident responders to manage confidentiality, integrity, and availability of internal and customer-facing networks and protection of vital information from cyber adversaries. This position involves managing security incident response lifecycles that include alerting, triaging, responding, reporting, coordinating, and communicating with internal and external security and network operations stakeholders on a 24x7x365 basis. Position includes cyber analysis growth and improvement opportunities, considerable case management writing opportunities, limited reports development, and extensive communication and coordination across several critical programs
The ideal candidate must be a self-starter, customer-focused, team player, flexible shift worker, and be able to coordinate and collaborate on multiple issues simultaneously with many stakeholders. As the face of AT&T for multiple programs, the candidate function requires thorough understanding, visibility, and management of customer accounts. The incident responder must provide first call resolution by solving top level customer issues to enhance customer experience and prevent escalation when not required. Multiple program differentiation and operating in a 24x7x365 faced-paced environment requires precise management of customer interaction and experience on a range of functional issue areas to include account and policy information, reports, outages, and security systems maintenance to maintain program compliance is required. When escalation is needed, the candidate must be able to coordinate with program management and other operations centers to create a seamless customer experience and handoff through efficient call and ticket routing. The candidate must maintain visibility of all active security-related customer issues and follow up with escalation centers on each issue through resolution. Escalation coordination includes customer account management issues, maintenance scheduling, communications, outage management, trouble ticket follow up, facility security access requests, and customer onboarding. Candidate must be capable of working with other operations and analysis team members closely to maintain maximum awareness of customer account information and standard issue requests on a per-customer basis. Candidate must have experience with ticket or case management platforms and other coordination systems. Foremost, candidate must possess exceptional customer experience skills, be committed to understanding the customer needs, and then taking appropriate steps to meeting those needs. Candidate must have relevant networking experience (e.g. TCP/IP stack, DNS, BGP, metadata, IDS/IPS) and be able to coordinate with other security teams in areas such as security event identification, known threat validation and analysis, and network vulnerability analysis and reporting. Excellent communications skills, that include the ability to follow incident processes and procedures, provide formal documentation of analysis and editing at a technical/professional level, are required. Candidates should possess a bachelor’s degree, as a minimum, in a related field such as math, science, computing, or engineering. A minimum of 5 years of relevant cybersecurity experience is required. Must be flexible with work hours and able to work eight-hour shifts.
Required Clearance: Must have and be able to maintain a TS/SCI clearance with a CI polygraph
Desired: Incident handling with 5-7 years security operations center expertise supporting customer-facing elements and internal security information management systems. Prior experience with open source vulnerability tools such as nmap, autoscan, nessus, Wireshark, snort, etc is desired. Security+, GCIA, CEH, CIH, or CISSP certification is desired. Understanding of government Tier 1 security operations center roles and responsibilities and computer network defense playbooks or incident response plans related to security operations are desired. Relevant cybersecurity experience with Department of Homeland Security, Department of Defense, or Federal Bureau of Investigation desired.
Apply on Company Website
Get alerts for jobs like this:
Get jobs like this tweeted to you:Engineering jobs in Fairfax, VA
View similar jobs:
Cloud Support Engineer
Amazon - Herndon, VA
AWS Support Engineer-DynamoDB
Amazon - Herndon, VA
Amazon - Herndon, VA
Locate this job: