Cyber Security Incident Analyst
CurrentThe Cyber Security Incident Analyst role is responsible for in-depth analysis of security events discovered by the Event Analyst. After detection, an Incident Analyst must be able to apply his/her experience and expertise in various system and networking technologies to determine if an incident has occurred. If an incident has occurred, the Incident Analyst will follow detailed operational process and procedures to escalate and assist in gathering of evidence for information security incidents. Additionally, the Incident Analyst will serve as a shift lead to provide in-depth analysis, escalation and call-outs, and mentor the Event Analyst.The Incident Analyst will be asked to perform the following major tasks:Provide 24x7 monitoring of information security events.Research various security events using his/her knowledge, research tools, and threat intelligence to determine when an incident has occurred.Analyze “sweeps” the IT environment looking for indicators of compromise.Follow detailed operational process and procedures to appropriately triage, analyze, and escalate critical information security event.Consume threat intelligence to proactively detect threats to the GM IT infrastructure.