DuPont Advanced Defense Specialist - Cybersecurity/ IR Lead in Wilmington, Delaware

Advanced Defense Specialist - Cybersecurity/ IR Lead (Job Number: 010719W-01)


The successful candidate will work in DuPont’s Advanced Defense & Threat Management team, leading security incident response team efforts, optimizing team processes, conducting in-depth technical analysis of identified cyber threat activity, and conducting cyber hunting operations. The candidate will monitor and deploy real time incident response capabilities, conduct volatile data acquisition, analyze forensic artifacts, conduct digital forensics and root cause analysis, develop recommendations for security enhancements, and help drive team strategy and capabilities.

The candidate will recognize potential, successful, and unsuccessful intrusion attempts and compromises thorough both escalated security event data and incident analysis reports. The candidate will mentor and collaborate with other security analysts to augment threat detection and analysis, while fostering a culture of teamwork within the team. The candidate will also collaborate with security specialists regarding the effective operationalization of key security capabilities to assist with implementation of counter-measures or mitigating controls.

The candidate will lead technical analysis and investigations, standardize and measure team processes to ensure effective delivery of team objectives. The candidate will continue to develop and document improved analysis methodologies and procedures, supporting the maturation of the company’s incident response and advanced defense capabilities.


Basic Qualifications:

  • Bachelor’s Degree in Computer Science or related field, such as Computer Engineering, Computer Forensics, Cyber Security, Information Systems, or equivalent experience.

  • Minimum five years of experience performing incident response and digital forensics

  • Strong understanding of incident response methodologies and technologies

  • Understanding of the life cycle of network threats, attacks, attack vectors, and methods of exploitation

  • Ability to analyze captured data to perform incident response and identify potential compromises

  • Ability to perform network and host based forensics and log analysis

  • Strong communication skills are necessary, including experience in:

  • Authoring and editing technical reports and presentations

  • Mentoring and collaborating with technical analysts

  • Strong analytical skills, creative thinking, and knowledgeable of security operations

  • Willing to participate in on-call rotation for emergency cyber security situations

  • Experience in static and dynamic analysis of binaries

  • Detailed understanding of signatures and regular expressions

  • Active US Secret Clearance/US Citizenship required and ability to obtain DHS Suitability

Desired Skills:

  • Knowledge of Information Security products and systems (EDR, IDPS, HIPS, SIEM, VA technology, etc…)

  • Strong process, documentation and metrics focus to optimize team performance

  • Knowledge and understanding of operating system internals, network security architecture, and protocol analysis

  • Creation of tools to automate analysis and incident response tasks

  • Must maintain the following certifications (or achieve within 6 months):

o Baseline ISO/IEC 17024 Information Security Certification (CISSP, GCED, GCIH, GCFA, GCFE)

Primary Location: NA-United States-Delaware-Wilmington

Organization: Corporate

Schedule: Full-time

Education Level: Bachelor's Degree (±16 years)

Employee Status: Regular

Job Type: Experienced