Information Security Specialist ( Incident Response Analyst )

Job Description Overview   Are you a motivated, self-driven independent thinker passionate about security? Do you thrive on spotting and managing anomalies in a complex environmment? Can you manage incidents while keeping up with the latest vulnerability and attack characteristics? Do you enjoy owning projects, and want to continue to be empowered to get things done? Are you interested in building your breadth by analyzing information across multiple applications and systems? Can you filter logs from multiple systems/formats or identify attacks from a PCAP? If this sounds like you then bring your expertise to our team as a Security Specialist.     The Security Specialist is a member of the Information Security Engineering team, reporting to the Team Lead of the Information Security Systems, and is responsible for tier 1-2 securityincident management, threat hunting and coordination of incident management efforts with multiple technical departments.  As a hands-on technical specialist, the Security Specialist will handle complex and detailed technical work necessary to identify and manage threats within the environment. The Specialist will have broad knowledge in the implementation and use of information securityprocesses and tools (e.g. SEIM, logging solutions, change detection systems, Incident orchestration systems). The successful candidate needs to enjoy a fast paced, high growth, detail oriented, tight knit team environment where input is valued and success is rewarded.   The Day-to-Day: Operational Incident Management, threat hunting 80% Incident management including responding to alerts, log analysis, process documentation and cross team communication. Identification of false positive and false negative reporting and alerting. Issue containment and escalation. Threat hunting across the environment to identify and manage threats and vulnerabilities. Manage security systems crucial to the incident management process. Work with IT and business departments during the incident management process. Projects 20% Work with the information security team to develop or integrate systems and process while addressing and reducing risk and time to detection. This includes researching relevant technologies, running proof of concepts, assessing operational costs and making recommendations for deployments. Qualifications: Must be able to work independently demonstrating risk assessment and mitigation expertise in IT or IS, along with a track record of working on information security/technology projects. 2 years (minimum) in log management/analysis and information securityincident management. 3-5 years (minimum) experience in the field of operational information security in at least two of the following areas: log management, Windows security, cloud integration security, endpoint security controls, networksecurity. If total Information Security experience is less than 5 years, 5-7 years in an area of information technology in two of the following areas: systems engineering (Windows), networking, virtualization, applications engineering or systems' administration. Technical certifications are a plus including: GIAC Certifications in the areas of Windows Security, Incident Response, Auditing, Network Analysis, Malware Analysis from the SANS Institute. Why Fisher Investments:   Fisher Investments is a different kind of investment firm. We don't come from Wall Street, nor do we believe we fit in with most of the finance industry, and we're proud of that. We work for a bigger purpose: bettering the investment universe. From unmatched service to innovative perspectives on investing, it's the people that make the Fisher purpose possible. After all, it's our people that enable us to offer the level of service that we do. And we invest in them accordingly, offering exceptional benefits like: 100% coverage of premiums for health, vision and dental insurance A 50% 401(k) match, up to the IRS maximum 20 days of PTO , plus 9 paid holidays And much, much more  We also provide a cumulative, continuous learning and development framework customized for every employee. This emphasis on personal and professional growth has yielded an award-winning work environment; we're Great Place to Work Certified, and The Oregonian named us as a 2017 Top Workplace with the best benefits!   But in the end, it's not the perks that keep people here. They stay because they believe in our mission of service--our employees want to make a difference in an industry that can do better.   California employees accrue up to 17 days of PTO and 3 days of sick time per year. FISHER INVESTMENTS IS AN EQUAL OPPORTUNITY EMPLOYER 2018-7307
Salary Range: NA
Minimum Qualification
5 - 7 years

Don't Be Fooled

The fraudster will send a check to the victim who has accepted a job. The check can be for multiple reasons such as signing bonus, supplies, etc. The victim will be instructed to deposit the check and use the money for any of these reasons and then instructed to send the remaining funds to the fraudster. The check will bounce and the victim is left responsible.