Senior Threat Detection Engineer

Sony Electronics, Inc. Herndon , VA 20171

Posted 1 week ago

Sony Corporation of America, located in New York, NY, is the U.S. headquarters of Sony Corporation, based in Tokyo, Japan. Sony's principal U.S. businesses include Sony Electronics Inc., Sony Mobile Communications (USA) Inc., Sony Interactive Entertainment LLC., Sony Pictures Entertainment Inc., Sony Music Entertainment, and Sony/ATV Music Publishing LLC. With some 900 million Sony devices in hands and homes worldwide today, a vast array of Sony movies, television shows and music, and the PlayStation Network, Sony creates and delivers more entertainment experiences to more people than anyone else on earth. To learn more: www.sony.com.

Position Summary:

Sony Corporation of America (SCA) is seeking a highly motivated, self-driven Senior Threat Detection Engineer to join the Global Security Incident Response Team (GSIRT) Security Operations Center (SOC), responsible for threat detection content development, threat hunting, and innovation in the areas of intrusion analysis, detection, and related activities. This position will be located in Herndon, VA and will report to the Associate Director, Capability Analytics.

Responsibilities :

  • Investigate and review computer intrusions focusing on initial infection vector determination, identification of new indicators of compromise (IOCs), and tactics, techniques, and procedures (TTPs) in support of threat detection and prevention development

  • Research, build, and maintain detection capabilities for the latest threats across SIEM correlations and security tool signatures

  • Actively participate in the threat hunting program

  • Contribute to and lead efforts to improve the SOC's effectiveness, advancing technical capabilities at pace with the latest threats

  • Develop and maintain digital forensics capabilities to enable rapid forensics triaging of systems

  • Support and integrate with incident response, threat intelligence, and overall security strategy as needed

  • Generate high quality documentation of research and analysis results, including processes and findings clearly and concisely to both technical and non-technical audiences

Qualifications :

  • 3 years of experience performing hands-on log analysis and host/network forensic analysis in support of incident response

  • 1-3 years of experience developing threat detection content support of incident response

  • 1-2 years of experience with Splunk and Splunk Enterprise Security

  • Strong understanding of TCP/UDP traffic, SIEM and log analysis technologies, IDS

  • Strong understanding of Windows and Linux operating systems, as well as command line tools

  • Strong interest in Endpoint Detect Response (EDR) technologies preferred

  • Experience with programming languages such as Python and Powershell is strongly preferred

  • Exposure to malware analysis (static and dynamic) preferred

  • Ability to manage multiple activities and events simultaneously, with a strong ability to prioritize multiple tasks and respond to high-priority events; organizing and scheduling work effectively

  • Operate effectively as part of a geographically dispersed team

  • All candidates must be authorized to work in the USA

Sony is an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religious creed, sex (including pregnancy), gender, national origin, citizenship, ancestry, age, physical or mental disability, military status, status as a veteran or disabled veteran, sexual orientation, gender identity or expression, marital or family status, genetic information, medical condition, or any other basis protected by applicable federal, state, or local law, ordinance, or regulation.

Disability Accommodation for Applicants to Sony Corporation of America

Sony Corporation of America provides reasonable accommodation for qualified individuals with disabilities and disabled veterans in job application procedures. For reasonable accommodation requests, please contact us by email at careers@sonyusa.com or by mail to: Sony Corporation of America, Human Resources Department, 25 Madison Avenue, New York, NY 10010. Please indicate the position you are applying for.

icon no score

See how you match
to the job

Find your dream job anywhere
with the LiveCareer app.
Mobile App Icon
Download the
LiveCareer app and find
your dream job anywhere
App Store Icon Google Play Icon
lc_ad

Boost your job search productivity with our
free Chrome Extension!

lc_apply_tool GET EXTENSION

Similar Jobs

Want to see jobs matched to your resume? Upload One Now! Remove
Cyber Security Threat Detection Senior

Freddie Mac

Posted 2 months ago

VIEW JOBS 5/28/2020 12:00:00 AM 2020-08-26T00:00 Have a passion for Cyber Security and the creation of security content? If you have validated Threat Detection experience and wish to be part of our team that seeks to enhance the defensive posture of an organization, apply to join Freddie Mac's Cyber Security division! As a Senior Cyber Security Threat Detection Analyst, the right candidate will help carry the Information Security department's vision of reducing information risk by ensuring and enhancing the Confidentiality, Integrity and availability of Information systems! Your Work Falls into Three Primary Categories: Threat Detection * Utilize Splunk to proactively identify and detect threats * Drive use case development from concept to alert creation * Engage with the Freddie Mac LOBs to identify security risks in order to create use cases for alerts * Ensure existing alerts are working as intended by partnering with the CSOC and IR teams as well as other teams within the organization * Evaluate data sources to ensure their applicability for the detection of threats and alerting * Utilize and map content to the MITRE ATT&CK Framework * Deliver dashboards and metrics as they pertain to Threat Detection * Follow established processes, procedures & SLAs in the creation of alerts * Responsible for development/improvement of processes/procedures Collaboration * Coordinate with the CSOC and Incident Response team to ensure that detective measures are in place for security events affecting the enterprise * Coordinate with the Threat Intelligence Team to implement vital detective measures for threat actors and known malware * Partner with Business/IT stakeholders to identify, detect and prevent security threats the organization faces. * Provides guidance to build the vital controls to provide automated and proactive detection and prevention. * Present to different audiences and adjust accordingly. (business, technical and management) either structured presentations or ad-hoc. * Establish and maintain business relationships with individual contributors as well as management. Align with Industry standard methodologies * Review new threats, resolve need for relevant security use cases and implement alerts. * Evaluate alerts on a continuous basis for relevancy, support monitoring of security risks, have the right data sources and are providing value. * Ensure the Threat Detection strategy is based on the MITRE ATT&CK Framework. Qualifications Requirements * 5+ years of Information Security or Cyber Security experience * Bachelor's degree in Information Security, Computer Science, Information Technology, related field or equivalent work experience * 2+ years of Hands on Information Security SOC/Incident Response experience with analyzing IOCs/Alerts as identified by CSOC & Threat Intel team * Knowledge and working experience of Splunk * Validated experience with SIEM alert development and mapping to the MITRE ATT&CK Framework * Experience in Threat Hunting * Validated experience in handling security events in mission critical environments * Solid understanding of enterprise detection technologies and processes (Advanced Threat Detection Tools, IDS/IPS, Network Packet Analysis, Endpoint Protection) * Sophisticated knowledge of network protocols and operating systems (Windows, Unix, Linux, Databases) * Relevant security knowledge and experience in two of the following areas: security operations, incident response, network/host intrusion detection, threat response Keys to Success in this Role * Self-starter and self-motivated. * Ability to work & collaborate reliably in a team environment. * Sense of urgency and able to apply risk based approach to prioritize work. * A sense of humor. * Ability to communicate clearly, effectively, persuasively with technology and business partners. * Motivated to learn new technologies and identify process improvements and efficiencies. * Ability to adapt to change while continuing to deliver on assigned objectives. * Strong verbal and written communication skills. Today, Freddie Mac makes home possible for one in four home borrowers and is one of the largest sources of financing for multifamily housing. Join our smart, creative and dedicated team and you'll do important work for the housing finance system and make a difference in the lives of others. We are an equal opportunity employer and value diversity and inclusion at our company. We do not discriminate on the basis of race, religion, color, national origin, gender, sexual orientation, age, marital status, veteran status, disability status or any other characteristic protected by applicable law. We will ensure that individuals with differing abilities are provided reasonable accommodation to participate in the job application or interview process, to perform essential job functions, and to receive other benefits and privileges of employment. Please contact us to request accommodation. Freddie Mac Herndon VA

Senior Threat Detection Engineer

Sony Electronics, Inc.