Princ Info Security Analyst

About NortonLifeLock:

NortonLifeLock is a global leader in consumer Cyber Safety. Bringing together decades of experience in cybersecurity and identity theft protection, we are the consumer ally in today’s connected world. NortonLifeLock solutions are powered by one of the world’s largest civilian cyber intelligence networks allowing us to help protect against advanced online threats. Nearly 80 million members and customers in more than 150 countries trust us with their personal information. We’re dedicated to making it easy for them to keep their connected lives safer while helping to secure their devices, online privacy, identity, and home and family needs.

Learn more at NortonLifeLock.com

About the Role

The Principal Information Security Analyst is an integral part of the Global Cyber Security team and will be responsible for monitoring, detecting, and responding to security events, incidents, and threats. This role ensures that security risks are analyzed and triaged using a wide range of information security technologies deployed within the organization. In addition, this role will help improve the overall risk posture of the organization by implementing controls to prevent or mitigate security risks and exposures. Additional responsibilities may be asked as deemed necessary.

Responsibilities:

• Review, triage, validate, and categorize security event using a wide variety of information security technologies.

• Analyze a variety of network and host-based log sources to support security investigations and incident response activities.

• Support the team in incident response activities including thorough documentation of steps taken through the incident management lifecycle.

• Search for indicators of compromise (IOCs) across our network to determine impact to our environment.

• Monitor the company’s security mailbox and respond to users that report potential security issues to Global Cyber Security.

• Investigate and analyze potential phishing emails that are reported by our end users.

• Contribute to team documentation around incident response activities (e.g. standard operating procedures, playbooks/runbooks, etc.).

• Make recommendations and/or implement security controls and countermeasures to prevent or mitigate various security risks.

• Proactive hunt on the network to identify security risks, threats, and exposures.

Qualifications:

• Bachelor’s degree in Computer Science, Information Assurance, or a related degree or equivalent work experience.

• At least one (1) year of experience as a Security Operations Center Analyst or Incident Response Analyst.

• Ability to context shift given the potential for various security events to be identified within the network simultaneously.

• Exceptional critical thinking and investigation skills.

• Ability to follow and abide by all information and security policies and practices.

• Knowledge of information security industry and regulatory obligations (PCI DSS, SOC1/2, ISO 27000-series, NIST Framework, etc.).

• In Depth Understanding of Security tools (IPS, HIPS, Web Proxy, Open Source Intelligence, Packet Captures, Memory Analysis, Syslog, DHCP, AD, 802.1x, NAT, VPN logs, Passive DNS, and SIEM).

• Enterprise security controls to detect and protect against varied sophistication around cyber security threats.

• Common and emerging attack vectors, penetration methods, countermeasures, and remediation methods and implications.

• Knowledge of MITRE ATT&CK Framework is a plus.

NortonLifeLock is proud to be an equal opportunity employer. We celebrate diversity and are committed to creating an inclusive and accessible environment for all employees. All employment decisions are based on merit, experience, and business needs, without regard to race, color, national origin, age, religion, sex, pregnancy (including childbirth or related medical conditions), genetic information, disability (physical or mental), medical condition, marital status, sexual orientation, gender identity or gender expression, military or veteran status, or any other consideration made unlawful by federal, state, or local law. NortonLifeLock strictly prohibits unlawful discrimination based on such protected characteristics and seeks to recruit the most talented candidates from diverse cultures and backgrounds.

We also consider for employment qualified individuals with arrest and conviction records. In addition, NortonLifeLock will not discharge or in any other manner discriminate against employees or applicants because they have inquired about, discussed, or disclosed their own pay or the pay of another employee or applicant. Learn more about pay transparency.

EEO is the law. Applicants and employees of NortonLifeLock Inc. are protected under Federal law from discrimination. See the EEO posterand supplement.

NortonLifeLock is a global leader in consumer Cyber Safety. Bringing together decades of experience in cybersecurity and identity theft protection, we are the consumer ally in today’s connected world. NortonLifeLock solutions are powered by one of the world’s largest civilian cyber intelligence networks allowing us to help protect against advanced online threats. Nearly 80 million members and customers in more than 150 countries trust us with their personal information. We’re dedicated to making it easy for them to keep their connected lives safer while helping to secure their devices, online privacy, identity, and home and family needs.

Learn more at NortonLifeLock.com .

Click HEREto review our Global Applicant Privacy Policy.

Click HEREto review Legal Notices and Information.

NortonLifeLock is committed to requests for reasonable accommodations to assist you in applying for positions at NortonLifeLock including resume submissions. If you need to request an accommodation, please contact HR Service Exchange.

• LifeLock identity theft protection is not available in all countries.