Title: Senior Analyst, Cyber Security
Nielsen N.V. (NYSE: NLSN) is a global performance management company that provides a comprehensive understanding of what consumers Watch and Buy. Nielsen’s Watch segment provides media and advertising clients with Total Audience measurement services across all devices where content — video, audio, and text — is consumed. The Buy segment offers consumer packaged goods manufacturers and retailers the industry’s only global view of retail performance measurement.
By integrating information from its Watch and Buy segments and other data sources, Nielsen provides its clients with both world-class measurement as well as analytics that help improve performance. Nielsen, an S&P 500 company, has operations in over 100 countries that cover more than 90 percent of the world’s population. For more information, visit www.nielsen.com
Utilize the Content Governance strategy to ensure all content is compliant to process and is inventoried and aligns to naming standards and best practices.
Reports, investigates as appropriate, and recommends corrective actions for data security incidents.
Prioritizing and differentiating between potential intrusion attempts and false alarms.
Advising incident responders in the steps to take to investigate and resolve computer security incidents.
Staying up to date with current vulnerabilities, attacks, and countermeasures
Work across security towers to build security automation and orchestration pipelines to expedite the eradication of threats to the network
Perform system and network analysis of intrusions to network infrastructure, applications, operating systems, firewalls, SIEM, malware detection, etc. and conducts preliminary incident response, event analysis and threat intelligence
Provides support on security issues and responds in accordance with the Security Incident Management Plan
Perform correlation of events from network, applications, enterprise and host to identify suspicious activity
Conduct technical level and business discussions, as it relates to incident response, cyber forensics, vulnerability management and threat analytics
Provide expert advice on the identification and mitigation of risks as they are identified thru forensics analysis and vulnerability discovery
Perform malware reverse engineering activities to gain insight to assist security incident activities
Perform investigations as appropriate, and recommend corrective actions for security incidents
Monitor and analyze traffic and system security events and logs;
Prioritizing and differentiating between potential intrusion attempts and false alarms
Perform analysis to determine scope and root cause of security event
This position requires the ability to work a on-call schedule
Performs other related duties as assigned:
Bachelor’s Degree from an accredited college or university with a major in Computer Information Systems or research related discipline or a minimum of 3+ years of direct Information Security experience.
Minimum 3 years of general IT experience with a variety of operating systems including Windows, Linux or UNIX in a functional capacity.
1+ years of direct experience in an Information Security role focused in Security Monitoring and Incident Response.
In-Depth understanding of Security Operation and Incident Response procedures and toolsets for internal and audit/compliance reviews.
Experience providing and validating security requirements related to information system design, implementation and business processes.
Knowledge of common information security standards, such as: ISO 27001/27002, NIST, PCI DSS, ITIL, COBIT. Basic Understanding of System Development Life Cycle methodology.
Ability to work both independently and as part of a team with minimal supervision.
Excellent written and verbal communication skills required. Must be able to communicate technical details in a clear, understandable manner.
Cloud IaaS/PaaS (AWS & Azure)
Hadoop, Elastic, ELK, RDS, Spark, Apache Flume/Apache Kafka
Mesosphere, Marathon, Docker
Log Management, Orchestration, Workflow, Analytic Modules
Understanding of Alerts(IOCs) vs Telemetry vs Enrichment
Netflow, Compression, SSL offloading and Inspection
Advanced scripting experience (Python, Shell, Bash, Java, Ruby, Chef, Puppet, Ansible, etc.)
Cloud computing standards and controls
his position requires the ability to work a shift schedule.
This position requires minimal travel