AMVETS Jobs

Summary:

This position is part of a team responsible for analyzing system and network activity and security controls to detect, disrupt, and deny cyber-attacks against AutoZone. This position is responsible for collecting, analyzing, generating, and distributing actionable cyber threat intelligence to stakeholders within the company. This analyst will work closely with stakeholders to provide timely situational awareness, translate cyber threats into actionable information to ensure resources are focused on the right risks, and to reduce the probability of material impact to the company. This analyst is expected to deliver desired, sustainable business outcomes and assure the integrity and continuity of AutoZone systems. This includes teaching domain expertise, providing guidance and mentoring, supporting customers, working with partners, resolving problems, and training as required.

Responsibilities:

Perform collection and analysis of threat data and intelligence to support stakeholder intelligence requirements.

· Develop strategic, tactical, and operational intelligence products for stakeholder dissemination.

· Present intelligence related to cyber threats at both technical and management levels to help shape tactical and strategic priorities.

· Research and analyze TTPs (tactics, techniques, and procedures) to generate behavioral security posture improvement actions.

such as detections or hunt packages, to support the identification of cyber threats within the environment.

· Provide intelligence support during incident response engagements.

· Collaborate with Threat Intelligence Team members, internal teams and departments, and appropriate business partners to address the cyber threat landscape.

· Escalate issues to management in a timely manner with appropriate information regarding risk and impact.

· Exercise independent judgement in methods, techniques, and evaluation criteria for obtaining results.

· Identification of security concerns, risks, and mitigating controls.

· Accurate work planning and execution; accurate project and time tracking.

· Teaching, coaching, and mentoring less experienced AutoZoners.

Requirements:

· Typically requires 3 to 5 years’ information security experience based on consistently demonstrated capabilities in a mid to large enterprise environment.

· Advanced task estimation, planning and execution skills

· Advanced problem solving, domain technical and analytical skills

· Knowledge and experience with IT Security Operations Center (SOC) activities, responsibilities, and processes including but not limited to:

o Usage of threat intelligence products for operations

o Managing the lifecycle of threat intelligence IoCs (Indicators of Compromise) to improve fidelity and minimize false positives.

o Threat hunting

o Security incident response activities.

· Knowledge and experience with one or more of the following functional areas preferred:

o Network and endpoint security, e.g. experience with enterprise firewalls, web gateway proxies, Active Directory security controls, EDR clients, etc.

o Application security, e.g. understanding of application-layer security controls and risks, penetration testing, code reviews, etc.

o Identity & Access Management, e.g. directory administration, single sign on (SSO), CyberArk or other privileged user administration tools, multi-factor authentication, etc.

o Other security, infrastructure, or application domains

· May provide technical or domain supervision to others.

· Preferred: Bachelor’s degree in Computer Science or related field

· Preferred: Security credentials such as Certified Information Systems Security Professional (CISSP)