Description

Senior Cybersecurity Defense Analyst, Kyndryl Inc., New York, NY: 

Analyze network and host activity associated with both successful and unsuccessful intrusions by advanced attackers. Lead and contribute to enterprise incident response efforts. Leverage understanding of tactics, techniques, and procedures associated with advanced threats to create and add custom signatures that mitigate highly dynamic threats to the enterprise. Employ advanced forensic tools and techniques for attack reconstruction and intelligence gathering. Proactively research emerging cyber threats. Apply analytical understanding of attacker methodologies and tactics, system vulnerabilities, and key indicators of attacks and exploits. Contribute to threat intelligence reports and briefings that provide situational awareness of cyber threats impacting the company's global network infrastructure, to every level of the organization. Participate and lead threat hunt operations using known adversary tactics, techniques, and procedures, as well as indicators of attack, in order to detect advanced threats to the enterprise. Collaborate using information and knowledge sharing networks and professional relationships to achieve common goals. Provide on-call support for incident response efforts outside of core hours as needed.

Full time employment, Monday – Friday, 40 hours per week, $172,827.00 per year.

MINIMUM REQUIREMENTS:

Bachelor’s degree or foreign equivalent in Cybersecurity, Information Technology or a related field and 5 years of progressive, post-baccalaureate work experience in a Cybersecurity role. 

Alternatively, the employer will accept a Master’s degree in Cybersecurity, Information Technology or a related field and 1 year of work experience in a Cyber Security role.

Of the required experience, must have 1 year of experience in all of the following:

• Utilizing EDR tools for detection and response;
• Performing "deep dive" analysis and correlation of log data from multiple sources (PCAP, forensic artifacts, network logs, application logs, system logs, security logs); 
• Leveraging actionable threat intelligence in effort to increase security posture within enterprise environments (i.e. threat hunting, detection creation, custom mitigations);
• Security Operations Center experience including experience with security automation platforms (i.e. Palo Alto XSOAR);
• Deep understanding of behavioral-based threat models, including ATT&CK, Cyber Kill Chain, Diamond Model;
• Proficient in the OSI model with hands-on experience in core network protocols and diagnostic tools (e.g., Wireshark, Nmap, tcpdump); and
• Operating systems, including macOS, Windows, and Linux, with the ability to perform basic troubleshooting, system navigation, and forensic analysis tasks as relevant to DFIR investigations.

Regional travel required up to 5% to various unanticipated worksites for incident response. When not required on-site, 100% telecommuting permitted. Candidate may reside anywhere in the U.S. 

Employer will accept any suitable combination of education, training or experience.

To apply, please email permdocs@kyndryl.com and reference the following job ID number in the subject line: R-64234 for Senior Cybersecurity Defense Analyst