Senior Cybersecurity Incident Response Analyst

Who We Are:

Hewlett Packard Enterprise is the global edge-to-cloud company advancing the way people live and work. We help companies connect, protect, analyze, and act on their data and applications wherever they live, from edge to cloud, so they can turn insights into outcomes at the speed required to thrive in today’s complex world. Our culture thrives on finding new and better ways to accelerate what’s next. We know diverse backgrounds are valued and succeed here. We have the flexibility to manage our work and personal needs. We make bold moves, together, and are a force for good. If you are looking to stretch and grow your career our culture will embrace you. Open up opportunities with HPE.

About our Cybersecurity team:

Are you ready to make an impact at one of the world’s leading tech companies? HPE’s Cybersecurity team is where you can do just that! We’re looking for a dynamic and experienced Senior Advanced Threat Analyst to join our Cybersecurity team. If you’re passionate about shaping the future of cybersecurity and ready for your next challenge, we’d love to hear from you.

About the role:

We will consider surrounding locations in Ireland, around Galway office. You will work as a Senior Cybersecurity Incident Response Analyst as part of our Cyber Defense Center team helping to identify, analyze, and respond to security threats. This is a highly technical role that requires a strong understanding of cyber security principles and a passion for protecting our users' data.

About You:

Demonstrates proficiency in performing log analysis across common environments (Windows, Linux, AWS, Azure, GCP). Your in-depth knowledge of common security threats, vulnerabilities, and attack methodologies will enhance our ability to effectively triage and contain incidents, conduct root cause analysis, and escalate appropriately. You will work independently and on high-impact projects in fast-paced environments, leveraging advanced expertise across cyber and IT security. Your extensive experience with performing in-depth incident investigation, documenting findings, and developing actionable remediation plans will be critical. Strong communication skills are essential, enabling you to clearly and concisely explain complex technical issues to both technical and non-technical audiences, and to effectively collaborate with cross-functional teams to improve our overall security posture.

Responsibilities:

• Lead and coordinate responses to the most complex cybersecurity incidents, guiding cross-functional teams through containment, eradication, and recovery.
• Combines deep industry expertise with a thorough understanding of information and security technology to effectively analyze associated logs and respond to high severity incidents.
• Contributes to the company's security response methods, suggesting automation opportunities which can enhance IR.
• Mentor and provide technical guidance to less experienced cybersecurity professionals.
• Stay at the forefront of cybersecurity trends, threats, and technologies, driving innovation within the organization's threat detection and response capabilities.
• Foster a culture of continuous improvement and innovation, encouraging the adoption of new technologies and methodologies within the team.
• Providing insight and guidance through after action reviews working with stakeholders.

Education and Experience Required:

• Bachelors degree (or equivalent work experience) required, preferably in computer science, engineering or related area of study
• Typically 4+ years of relevant experience
• SOC team/Incident response analyst experience is require
• Proven track record of leading complex cybersecurity initiatives and managing ambiguous incidents
• Advanced understanding of adversary tactics, techniques, and procedures (TTPs).

Knowledge and Skills:

• Advanced Cyber and IT security knowledge
• Advanced understanding of Cyber and IT security risks, best practices, threats and prevention measures as well as containment and remediation actions
• Advanced understanding of SQL and relevant scripting languages
• Advanced data security system analysis skills
• Advanced risk assessment and management skills
• Advanced understanding of networking and network security
• Advanced data understanding of network monitoring and protocols
• Advanced knowledge of relevant .Net development, programming and scripting languages
• Be a dependable team player with strong business insight, enthusiasm, and a positive attitude.
• Be an excellent communicator, whether writing, speaking, or presenting.
• Ability to make rapid informed decisions, while working in an agile environment.
• Demonstrated understanding of large enterprise computing environments, applications, and TCP/IP networks and protocols
• Advanced knowledge of operating systems including Windows, Linux and macOS as well as cloud environments (AWS, Azure, GCP)