Investigate and contextualize security events from numerous data sources
Help detect, respond, and remediate security events and incidents
Create automated data correlation and triage processes to reduce alert-to-fix time
Develop remediation and orchestration efficiencies across the security stack - including endpoint, network, identity, and application
Perform e-discovery tasks in support of Legal and HR investigations
Respond to user requests for security-related issues and concerns
Improve current visibility by configuring existing logging and alerting policies
Evaluate and select additional tools and services
Contribute to SIEM tuning for reliable alerting
Perform vulnerability triage and assignment
Engage in proactive threat hunting to identify risks not automatically captured by scans
Have a meaningful and positive impact on the security of colleagues and clients
Be challenged to identify, build, test, and deploy solutions in real-life, not in theory
Be encouraged to innovate and take ownership
Be given the opportunity to rapidly accelerate security, technology, and management skills
Have the freedom to experiment with novel problem-solving approaches
Contribute to all security-related initiatives - both tactical and strategic
Be exposed to emerging security and business technologies
Have access to best-in-class tooling and people
Grow and learn on the job every day
Serve as a subject matter expert on information security-related escalations
Maintain awareness of trends in various security domains
Collaborate with other teams to improve security posture, risk remediation, and threat awareness

Requirements

Bachelor’s degree in Cybersecurity, Engineering, or a related field or equivalent experience
5+ years of experience in Security Engineering or Security Operations
Experience with Incident response, security event triage, investigations, forensics
Fluency with endpoint operating systems (Windows/Mac/Linux) and command line tools
Experience with log analysis, event aggregation, security event data management, SIEM tuning, Microsoft Sentinel
Experience with security automation and orchestration, threat intelligence utilization
Experience with e-discovery tools and processes
Experience responding to phishing, scam, and imposter campaigns
Experience with endpoint security tooling and MDM solutions
Network engineering, secure architecture, network operations (firewalls, switches, etc.)
Cloud infrastructure operations and architecture (AWS a plus)
Identity management and authentication protocols
Remediation strategies, system hardening, vulnerability management
Enterprise information technology including Active Directory/Azure AD, Exchange, Office 365, servers (Windows, SQL/DB, Linux, VM, Citrix, App, Web), device/asset management, ServiceNow
Experience with posture and threat management of third-party SaaS platforms
Technical understanding of enterprise EDR tools

Benefits

The unique and exciting opportunity to work at one of a leading global entertainment companies
Access to the tools, leadership, and resources you will need to create and drive a center of excellence
The opportunity to do the best work of your career
Work in an inclusive and diverse company culture
Competitive programs to support your well-being
Experience working in a collaborative environment with room to grow

Applicant Tracking System Keywords

Tip: use these terms in your resume and cover letter to boost ATS matches.

Hard Skills & Tools

security event triageincident responseforensicslog analysisSIEM tuningsecurity automationthreat intelligencevulnerability managementendpoint securitycloud infrastructure operations

Soft Skills

problem-solvinginnovationownershipcollaborationcommunicationproactive threat huntingadaptabilitysubject matter expertiseawareness of security trendsimpact on security

Certifications

Bachelor’s degree in CybersecurityBachelor’s degree in Engineeringrelated field equivalent experience