Analyst, It Security Operations Job in Baxter International

Your Role The primary purpose of this position is to monitor and address security alerts in a fast paced global environment. Core processes include triage, investigation, containment and escalation of incidents based on their severity. This position requires shift work and on-call duties in support of 24x7 coverage for global security monitoring and incident response. Overtime could be necessary to support activities during a major incident. What you ll be doing Monitor core security platforms throughout the shift and triage alerts quickly and consistently Investigate alerts and execute containment and remediation actions to ensure that problems are fully resolved or escalated as needed Execute threat hunts to uncover malicious activity that may have gone undetected by automated security alerting Support major security incident management by addressing data collection, analysis and communications requirements on a global scale Document incidents, investigation actions and lessons learned to support continuous improvement within the team Support additional engineering, operations and IT security projects as requested by management What you ll bring 3-5 years of experience with security monitoring, triage and incident handling Bachelor's degree in Computer Science, a related field or equivalent demonstrated experience and knowledge Demonstrated skill operating security tools including Endpoint, Web and Networking Familiar with Security Incident and Event Management (SIEM) and ticket management Familiar with enterprise IT processes for incident and problem management Familiar with the normal operation of common network communication protocols, authentication processes and logging capabilities of modern platforms to identify and resolve security events Able to recognize anomalous and malicious behavior and techniques Excellent English verbal and written communication skills Demonstrated skill working as part of a team, collaborating and supporting peers in a fast-paced environment Industry certifications nice to have: OSCP, GCIH, GCIA, GCFE, GREM, GCFA, GSEC, CEH, CISSP, CISM