SR.-Senior 2 Cybersecurity Analyst – Intel and IR – REMOTE

Description

Publix is able to offer virtual/remote employment for this position in the following states: FL, GA, AL, TN, SC, NC, VA.

Description:
The Sr Cybersecurity Analyst 1-2 performs complex analysis, development, and implementation activities across several cybersecurity disciplines including alert investigations, incident response, forensic and malware analysis, and threat intelligence. This position identifies security risks and threats and develops and implements solutions to reduce risk. Under less specific guidance, this position is responsible for protecting Publix systems, networks, and data from unauthorized use or disclosure and ensuring that Publix meets all applicable legal, contractual, and regulatory requirements related to cyber security.

Job Responsibilities:
Under less specific guidance, works with team members, stakeholders, and business customers to identity security risks and threats. Develops and implements complex solutions to remediate security risks and threats.

• Develop and deliver actionable intelligence services to stakeholders to reduce security risk, support strategic decision-making, enhance and support incident response, threat hunting, detection engineering, red team operations, and security threat monitoring with operational and tactical intelligence.
• Develop automation to enhance threat feed and intelligence data ingestion, processing, and dissemination.
• Monitor and analyze security alerts to identify anomalous behavior indicative of cyber security incidents that could lead to a system, network, or data breach.
• Provides security recommendations for tuning security configuration of systems such as endpoint security tools, web application firewalls, next-gen firewalls, cloud platforms, and email security,
• Performs highly complex forensic investigations to analyze and reconstruct malicious events to determine the origin and root cause for actual or attempted breaches/compromises of applications, systems, or networks.
• Develops and implements highly complex processes and procedures to mature our threat intelligence, detection engineering, incident response, threat hunting, threat emulation, automation, malware analysis, and forensics capabilities,
• Plays a crucial role in ensuring our cloud capabilities meet PCI/SOX/HIPAA/PII compliance standards.
• Provides on-call after-hours support for cyber security incidents.

Required Qualifications

• Must have a bachelor’s degree in management information systems, Computer Science, Business, Information Security, or other analytical disciplines or equivalent experience.
• Must have at least 2 years (4 years for Senior Cybersecurity Analyst 2) of experience in one or more of the following areas: cyber threat intelligence, Security Operations, Incident Response, Forensic Analysis, Penetration Testing, Network Security, and Platform Security,
• Must have at least 2 years (4 years for Senior Cybersecurity Analyst 2) of experience in triaging incidents using endpoint detection and response (EDR) tools, intrusion protection systems (IPS), Wireshark, web application firewall (WAF), cloud security monitoring and detection tools, forensic acquisition, and analysis tools such as KAPE and volatility in an enterprise setting,
• Must have good knowledge of at least one or more of the following: PCI-DSS, SOX, HIPAA requirements.
• Good knowledge of analyzing security alerts to identify anomalous behavior that could lead to cyber security incidents
• Must have good written and verbal communication skills with the ability to relate to all levels of Publix associates,
• Must have the ability to resolve complex business and technical issues by making decisions using sound business judgment,
• Must have excellent customer service skills and commitment to teamwork,
• Must be flexible and able to handle stressful situations professionally,
• Must demonstrate the ability to work under general guidance,
• Must have good analytical, problem-solving, and conceptual skills,
• Must have a high degree of confidentiality, maturity, self-motivation, commitment, and integrity and,
• Must show enthusiasm, initiative, attention to detail, punctuality, pride in work, and a commitment to Publix and our Mission.

Preferred Qualifications

• Continued education, including additional or advanced degrees in an analytical, technical, or business discipline.
• At least 4-6 years of experience in one or more of the following areas: cyber threat intelligence, Security Operations, Incident Response, Forensic Analysis, Penetration Testing, Network Security, and Platform Security,
• Must have strong knowledge of at least one or more of the following: PCI-DSS, SOX, HIPAA requirements
• 6 years of strong experience triaging incidents using endpoint detection and response (EDR) tools, intrusion protection systems (IPS), Wireshark, web application firewall (WAF), cloud security monitoring and detection tools, forensic acquisition, and analysis tools such as KAPE and volatility in an enterprise setting,
• Experience configuring and analyzing security alerts from next-gen firewalls
• Strong interpersonal and leadership skills, including experience in organizing, planning, and executing large-scale, cross-functional efforts,
• Strong understanding of common web-based communication and security protocols,
• Strong understanding of the OWASP top ten security risks and common mitigation techniques,
• Automation and scripting skills using PowerShell, Python, bash or other,
• One or more of the following certifications:
• • GIAC Cyber Threat Intelligence (GCTI),
  • Splunk Core Certified Advanced Power User,
  • Crowdstrike Certified Falcon Responder (CCFR),
  • Crowdstrike Certified Falcon Hunter (CCFH),
  • SC 200 – Microsoft Security Operations Analyst,
  • GIAC Certified Intrusion Analyst (GCIA),
  • GIAC Network Forensic Analyst (GNFA),
  • GIAC Certified Forensic Examiner (GCFE),
  • GIAC Certified Forensic Analyst (GCFA),
  • GIAC Certified Detection Analyst (GCDA),
  • GIAC Defending Advanced Threats (GDAT),
  • Certified Red Team Professional (CRTP),
  • Palo Alto Networks Certified Network Security Engineer (PCNSE)

Benefits

• Employee stock ownership plan that contributes Publix stock to associates each year at no cost
• An opportunity to purchase additional shares of our privately-held stock
• 401(k) retirement savings plan
• Group health, dental and vision plans plan
• Paid Time Off
• Paid Parental Leave
• Short- and long-term disability insurance
• Tuition reimbursement
• Free hot lunches (buffet-style) at facilities with a cafeteria
• Visit our website to see all of our benefits: Benefits – Jobs (publix.com)

Year End Bonus

As a year-end bonus to associates, Publix issues one month’s extra pay (pro-rated in the first year) each year if associate remains employed through issue date of the bonus check that year. This is calculated as a 13th month of pay in the Potential Annual Pay with Bonus line above.

Additional Information

Your application may have additional steps that you will need to complete in order to remain eligible for consideration. Please be sure to monitor your email, including your spam folder, on a daily basis for critical, time-sensitive emails that could require action within 24-48 hours.
Please do not use your Publix email address when applying. Once your application has been successfully submitted you will receive a confirmation email.

Publix will not sponsor any hire for this position for an H-1B visa or permanent residence.