Job Information
Xerox Cybersecurity Incident Response Lead in Helena, Montana
Cybersecurity Incident Response Lead
General Information
Press space or enter keys to toggle section visibility
Country
United States
Department
Information Management
Date
Thursday, May 25, 2023
Working time
Full-time
Ref#
20013121
Job Level
Individual Contributor
Job Type
Experienced
Job Field
Information Management
Seniority Level
Mid-Senior Level
Description & Requirement
Press space or enter keys to toggle section visibility
About Xerox Holdings Corporation
For more than 100 years, Xerox has continually redefined the workplace experience. Harnessing our leadership position in office and production print technology, we’ve expanded into software and services to sustainably power today’s workforce. From the office to industrial environments, our differentiated business solutions and financial services are designed to make everyday work better for clients — no matter where that work is being done. Today, Xerox scientists and engineers are continuing our legacy of innovation with disruptive technologies in digital transformation, augmented reality, robotic process automation, additive manufacturing, Industrial Internet of Things and cleantech. Learn more at www.xerox.com and explore our commitment to diversity and inclusion.
Overview:
The Incident Response Lead supports the incident response process within the Xerox Cyber Defense team. The qualified candidate will analyze, contain, and recover from any detected or reported issue in accordance with cyber security incident management process.
Scope:
This is a leadership opportunity, as the Incident Response Lead will technically guide a team of 4 IR Analysts.
Primary Responsibilities:
Analyzing, triaging and managing incidents end-to-end based on business impact and applicable privacy/legal/regulatory requirements
Collaborating with the managed security services supplier in designing rules/alerts within the security information & event management system (SIEM) and/or other security technologies employed by Xerox to swiftly detect and/or prevent compromise to systems and/or information
Analyze data from various sources to identify possible risk indicators, determine possible root cause and identify preventative actions
Perform eDiscovery assignments and forensic analysis in accordance with standard legal hold policies, procedures, and in alignment with record retention guidelines as required by the Office of General Counsel
Act on behalf of the incident response management if/when necessary to maintain target service delivery levels and mitigation of incidents on Xerox network and/or against Xerox resources
Own end to end incident response process and lead a team of highly technical incident response analysts
Qualifications:
At least 4+ years of professional experience in an incident response role
Knowledge of common security vulnerabilities including OWASP Top 10 and SANS 25
Understanding of IDS/ IPS, SIEM, email security, EDR and end point protection technologies
Strong understanding of network, application layer and OS fundamentals
Experience analyzing and responding to incidents in cloud environments
Strong attention to detail, time management and analytical skills
Strong written and communication skills
Uncompromising personal and professional integrity and ethics
Associates or Bachelor's Degree in Cybersecurity, Computer Science, Information Systems, or related field
Preferred – A technical certification such as ECIH, CCFP, GCFE, GCFA, or equivalent is desired
Experienced in offensive security
Experienced in performing disk/ memory forensics and/or malware analysis
Experienced in Splunk and QRadar
#LI-KC1 #LI-Remote
Xerox is an Equal Opportunity Employer and considers applicants for all positions without regard to race, color, creed, religion, ancestry, national origin, age, gender identity, sex, marital status, sexual orientation, physical or mental disability, use of a guide dog or service animal, military/veteran status, citizenship status, basis of genetic information, or any other group protected by law. Learn more at www.xerox.com and explore our commitment to diversity and inclusion: https://www.xerox.com/en-us/jobs/diversity People with disabilities who need a reasonable accommodation to apply or compete for employment with Xerox may request such accommodation(s) by sending an e-mail to XeroxStaffingAdminCenter@xerox.com. Be sure to include your name, the job you are interested in, and the accommodation you are seeking.