Lead, Cyber Defense & Incident Response
Role details
Job location
Tech stack
Job description
The Digital Forensics & Incident Response Lead will serve as an individual technical contributor, responsible for conducting digital forensic and incident response analysis, responding to security incidents, assisting with threat hunting operations, performing incident readiness activities, and completing other related cybersecurity tasks as required in a highly dynamic global corporate environment., * Scope and perform enterprise-wide, global investigations with both on-prem and cloud technologies such as Active Directory/Entra, M365, Azure, AWS, etc.
- Leverage Splunk's Search Processing Language (SPL) and Microsoft's Kusto Query Language (KQL) in support of investigative workflows
- Utilize EDR tooling to perform enterprise-wide investigations and analysis
- Perform log, host, memory, and network-based forensics in support of active investigations
- Perform malicious code triage in support of incident response activities
- Possess strong verbal and written communication skills sharing key investigative details to stakeholders and business leaders globally
- Collaborate closely with technical stakeholders in support of active investigations
- Develop scripts, queries and automation workflows in support of XSOAR
- Lead and contribute to unique team-driven projects, advancing the team's forensic and response capabilities across the enterprise
Requirements
- 5 plus years of experience responding to cyber incidents in large corporate/enterprise environments.
- Bachelor's degree in Digital Forensics, Information Security, Computer Science, Information Technology, or related discipline.
- Experience using enterprise forensic software suites (X-Ways, EnCase, etc.).
- Knowledge of common scripting languages (Python, PowerShell, Bash, etc.)
- Industry standard certifications (CCE, EnCE, GCFE, GCFA, GCIH, GREM, GNFA, GPEN, etc.)
- Comprehensive understanding of adversarial threat frameworks such as MITRE ATT&CK and Lockheed Martin's Cyber Kill Chain
Benefits & conditions
Prudential is required by state specific laws to include the salary range for this role when hiring a resident in applicable locations. The salary range for this role is from $123,700.00 to $204,100.00. Specific pricing for the role may vary within the above range based on many factors including geographic location, candidate experience, and skills.
- Market competitive base salaries, with a yearly bonus potential at every level.
- Medical, dental, vision, life insurance, disability insurance, Paid Time Off (PTO), and leave of absences, such as parental and military leave.
- 401(k) plan with company match (up to 4%).
- Company-funded pension plan.
- Wellness Programs including up to $1,600 a year for reimbursement of items purchased to support personal wellbeing needs.
- Work/Life Resources to help support topics such as parenting, housing, senior care, finances, pets, legal matters, education, emotional and mental health, and career development.
- Education Benefit to help finance traditional college enrollment toward obtaining an approved degree and many accredited certificate programs.
- Employee Stock Purchase Plan: Shares can be purchased at 85% of the lower of two prices (Beginning or End of the purchase period), after one year of service.
Eligibility to participate in a discretionary annual incentive program is subject to the rules governing the program, whereby an award, if any, depends on various factors including, without limitation, individual and organizational performance. To find out more about our Total Rewards package, visit Work Life Balance | Prudential Careers. Some of the above benefits may not apply to part-time employees scheduled to work less than 20 hours per week.
Prudential Financial, Inc. of the United States is not affiliated with Prudential plc. which is headquartered in the United Kingdom.
