Symantec Corporation Tempe , AZ 85280
About Us:Symantec Corporation (NASDAQ: SYMC) is the global leader in cyber security. Operating one of the world's largest cyber intelligence networks, we see more threats, and protect more customers from the next generation of attacks. We help companies, governments and individuals secure their most important data wherever it lives. We make the world a safer place by helping people, businesses and governments protect and manage their information, so they can focus on achieving their goals.Job DescriptionAs part of Symantec Global Security Office (GSO), Symantec is looking for a highly motivated Information Security Analyst to analyze internal tools and detection systems to respond to activities related to data/IP loss and leakage. Candidates should have a strong technical background, experience with computer forensic and investigative tools, data analytics, system and network administration, and the ability to build or automate tasks and tools. This is a unique opportunity to protect the IP, data and privacy of our company, employees, and community by detecting, investigating, and preventing data loss and leakage. As part of this role, this person will work closely with our Human Resources, Privacy, Legal and Compliance teams to carry out complex internal investigations.RESPONSIBILITIES
This role will be primarily responsible for the timely response, investigation and remediation of data protection and compliance related alerts and incidents in accordance with policies, standards, SLAs, regulations and directions from leadership.
Educate, advise and communicate with business users of appropriate security policies and standards in order to improve business awareness and security posture.
Understand, review and make appropriate recommendations to improve business processes and security configurations.
Develop and produce reporting and metrics related to the security processes and services.
Assist in forensic investigations of laptops, servers, and mobile devices.
Use data analytics to guide detection and develop operational improvements.
Summarize and present information and support audits.
Understand, review and maintain current run books, documentation, processes, Standard Operating Procedures (SOPs), user/support documentation. Develop new as required.
Uplifting and enhancing security services in line with stakeholder requirements.
Support operating periods which can include early morning or evening shifts as required.
Interfaces with department teams to identify and resolve security problems and provide proper escalations and handoffs to management and support staff.
SKILLS & QUALIFICATIONS
Bachelor's degree in Computer Science, Engineering, or equivalent.
1+ years of experience in technical security positions, SOC experience preferred
Hands on experience with Data Loss Prevention software (e.g. Symantec DLP), in particular incident remediation
Experience interpreting information from multiple sources and work with large data sets (data analytics).
Experience with SIEM tools like Splunk or ELK
Must be self-starter and able to manage priorities and workload while working in a remote and distributed group
Must have excellent communication skills (both oral and written), organizational, and customer service skills. Ability to interface with all levels within the organization.
Capable and self-motivated to quickly learn and constantly improve.
PREFERRED SKILLS & QUALIFICATIONS
Incident response, networking or system administration experience.
2+ years of experience in computer forensic investigations or similar technical investigations.
Cloud or SAAS forensics/investigations.
Knowledge of operating systems (Windows, macOS, Linux) and database tools (e.g. SQL, or similar).
Knowledge of compliance and regulations (e.g. PCI, HIPAA, GDPR) would be highly desirable.
Experience with insider threat detection tools and advanced analytic methodologies.
Experience working collaboratively in stressful situations with a sense of urgency.
One or more IT Security certifications (CISSP, CISM, CISA, SANS, Security+, etc.) would be desirable
Symantec is an equal opportunity employer. All candidates for employment will be considered without regard to race, color, religion, sex, gender identity, sexual orientation, national origin, physical or mental disability, veteran status, or any other basis protected by applicable federal, state or local law.