DuPont Advanced Defense Specialist - Cybersecurity/ IR Lead in Wilmington, Delaware
Advanced Defense Specialist - Cybersecurity/ IR Lead (Job Number: 010719W-01)
The successful candidate will work in DuPont’s Advanced Defense & Threat Management team, leading security incident response team efforts, optimizing team processes, conducting in-depth technical analysis of identified cyber threat activity, and conducting cyber hunting operations. The candidate will monitor and deploy real time incident response capabilities, conduct volatile data acquisition, analyze forensic artifacts, conduct digital forensics and root cause analysis, develop recommendations for security enhancements, and help drive team strategy and capabilities.
The candidate will recognize potential, successful, and unsuccessful intrusion attempts and compromises thorough both escalated security event data and incident analysis reports. The candidate will mentor and collaborate with other security analysts to augment threat detection and analysis, while fostering a culture of teamwork within the team. The candidate will also collaborate with security specialists regarding the effective operationalization of key security capabilities to assist with implementation of counter-measures or mitigating controls.
The candidate will lead technical analysis and investigations, standardize and measure team processes to ensure effective delivery of team objectives. The candidate will continue to develop and document improved analysis methodologies and procedures, supporting the maturation of the company’s incident response and advanced defense capabilities.
Bachelor’s Degree in Computer Science or related field, such as Computer Engineering, Computer Forensics, Cyber Security, Information Systems, or equivalent experience.
Minimum five years of experience performing incident response and digital forensics
Strong understanding of incident response methodologies and technologies
Understanding of the life cycle of network threats, attacks, attack vectors, and methods of exploitation
Ability to analyze captured data to perform incident response and identify potential compromises
Ability to perform network and host based forensics and log analysis
Strong communication skills are necessary, including experience in:
Authoring and editing technical reports and presentations
Mentoring and collaborating with technical analysts
Strong analytical skills, creative thinking, and knowledgeable of security operations
Willing to participate in on-call rotation for emergency cyber security situations
Experience in static and dynamic analysis of binaries
Detailed understanding of signatures and regular expressions
Active US Secret Clearance/US Citizenship required and ability to obtain DHS Suitability
Knowledge of Information Security products and systems (EDR, IDPS, HIPS, SIEM, VA technology, etc…)
Strong process, documentation and metrics focus to optimize team performance
Knowledge and understanding of operating system internals, network security architecture, and protocol analysis
Creation of tools to automate analysis and incident response tasks
Must maintain the following certifications (or achieve within 6 months):
o Baseline ISO/IEC 17024 Information Security Certification (CISSP, GCED, GCIH, GCFA, GCFE)
Primary Location: NA-United States-Delaware-Wilmington
Education Level: Bachelor's Degree (±16 years)
Employee Status: Regular
Job Type: Experienced