Cyber Security Analyst

Job Description

As the world around us becomes more connected and more digital, there are increased opportunities for fraud and disruption due to cybersecurity attacks. The need for companies, products, and services to be secure is more important than ever in this constantly changing landscape.

Are you passionate about keeping good people safe from bad actors? We are too! We are HP Cybersecurity, and we are tasked with the security of the HP enterprise. As HP continues our digital transformation, the work of the cybersecurity professional is never complete and is always interesting. Come be a part of making a difference with us!

What a Cybersecurity Senior Analyst - Detection & Response does at HP:

• Uses knowledge of the HP environment to scope the extent and impact of any attack or breach.
• Conducts forensics analysis on compromised systems; leverages knowledge of multiple operating systems and multiple data streams to determine root cause analysis and provide full-scope awareness of attacks.
• Resolves HP security issues related to security incidents and threats through independent analysis and/or research.
• Supports incident escalation and assesses probable damages, identifies damage control and remediation, and develops courses of action.
• Threat hunts the HP environment for known or emerging Tactics, Techniques, or Procedures (TTPs).
• Identifies HP security system attacks and threats, runs analyses on security incidents and threats, researches appropriate countermeasures, and conducts response actions.
• Develops, enhances, and maintains automation and workflows; streamlining detection, artifact collection, and response tactics.
• Recommends collection of additional telemetry to enhance the visibility of attack vectors.
• Provide feedback for new threat detection logic; recommend modifications to the existing HP security solutions.
• Conduct incident postmortems; assess and identify policies or procedures that require new implementation or refinement.
• Create and present incident reports, summaries, presentations, and internal communications for senior leadership and executive audiences.

Individuals who thrive in this role at HP, typically have:

• 7+ years of relevant experience including security operations, incident response, or threat hunting.
• 2+ years leading teams in security operations, incident response, or threat hunting.
• Experience in developing threat-hunting hypotheses; leveraging security platforms to test, search, and investigate potential uncovered threats.
• Strong knowledge and experience with Security Analytics Platforms and Endpoint Detection & Response (EDR) Platforms
• Knowledge and experience of common enterprise technology solutions
• Deep and experienced understanding of digital forensics, including two or more of the following a strong plus:
  • File system, Registry, etc. artifacts commonly associated with malware or malicious activities.
  • Cloud Forensics
  • Memory analysis
  • Malware reverse engineering
• A mindset of continuous growth, curiosity, and asking WHY?
• Preferred: Technical Cyber Security Certifications through one of the recognized bodies – e.g. GIAC, ISACA, (ICS)2, CompTIA, Cisco, CERT.

• Four-year or Graduate Degree in Computer Science, Information Technology, or any other related discipline or commensurate work experience or demonstrated competence.
• Typically has 10+ years of work experience, preferably in cyber & IT security, or a related field

About the team:

Our Detection & Response Analysts are part of our Threat Detection & Response team, enabling optimal communication and collaboration with closely related functions. Our mission is simple to express – find and stop the Bad Guys! – but challenging to execute. You can become a key part of ensuring our success!

As a Senior Detection & Response Analyst, you will also have the opportunity to interface with other Cybersecurity functions using your knowledge to respond to protect HP from attacks.