Senior Cyber Security Engineer - Security Operations Center

Join Team CARFAX as a Senior Cyber Security Engineer - Security Operations Center

We are seeking a highly skilled and motivated Senior Cyber Security Engineer - Security Operations Center to join our dynamic Information Security team. The Senior Cyber Security Engineer - Security Operations Center plays an essential role in building, supporting, and enhancing the organization's cybersecurity posture. This senior position offers an excellent opportunity to work closely with cybersecurity professionals to protect the organization's data and IT infrastructure from cyber threats. The Senior Cyber Security Engineer will be accountable for the development and maintenance of the Security Operations Center program for Carfax.

At CARFAX, we believe in teamwork and in-person collaboration to thrive together. This position will require 32days per week in our London, ON office subject to change with future business needs.

• Oversee and operate continuous monitoring of network traffic, systems, and applications to detect, analyze, and respond to cybersecurity threats and incidents, utilizing advanced security tools and methodologies for proactive defense.
• Lead the entire security incident process, including detection, triage, investigation, containment, remediation, and reporting, ensuring minimal impact on business operations and continuously improve incident response processes through automation.
• Conduct in-depth analysis and forensics of security incidents to determine root causes, identify compromised systems, and assess the scope of breaches, using standard practices to gather and preserve evidence for potential legal and regulatory requirements.
• Develop and maintain a robust threat intelligence program by collecting, analyzing, and disseminating actionable intelligence to anticipate, identify, and mitigate emerging threats, leveraging internal and external sources to enhance the organization's security posture.
• Proactively perform threat hunting activities using advanced analytical techniques and tools to identify and mitigate undetected threats, and potential vulnerabilities within the organization's systems.
• Manage and optimize the collection, storage, and analysis of security logs from various sources to ensure comprehensive visibility and timely detection of security events, implementing best practices for log retention, parsing, and aggregation to support SOC functions.
• Develop and deliver risk-based security reports that provide actionable insights and recommendations by analyzing security incidents, threats, and vulnerabilities, informing decision-makers of the current security posture and ensuring alignment with organizational risk management strategies.
• Create and maintain comprehensive security documentation, including policies, procedures, and guidelines, and support security awareness training programs to educate staff about cyber threats, safe practices, and incident response protocols, fostering a security-conscious culture.

• Bachelor's degree in computer science, Information Technology, Cybersecurity, or a related field, or equivalent work experience in information technology.
• 4-7 years of experience in cyber incident response within an Incident Response or Security Operations Center team.
• Strong understanding of security principles, practices, tools, and techniques used by cybersecurity teams.
• Familiarity with security technologies, tools, and frameworks (e.g., SIEM, Endpoint Detect & Response, firewalls, IDS / IPS, MITRE ATT&CK, BURP Suite, Nessus, NMAP) and knowledge of programming languages and operating systems (e.g., Python, Kali Linux).
• Skilled in interpreting and analyzing data from multiple security tools and sources, including IDS alerts, firewall logs, web and application logs, and network traffic, to detect Indicators of Compromise and malicious Tactics, Techniques, and Procedures.
• Ability to review alerts for relevancy and urgency, provide tuning recommendations, identify and respond to sophisticated threats, and conduct risk assessments with strong analytical and problem-solving skills.
• Excellent written and verbal communication skills, with an emphasis on clear and concise risk-based reporting; ability to work both collaboratively in a team environment and independently; eagerness to learn and a proactive attitude towards professional development.

• Competitive compensation, benefits and generous time-off policies
• 4-Day summer work weeks and a winter holiday break
• 401(k) / DCPP matching
• Annual bonus program
• Casual, dog-friendly, and innovative office spaces
• For a comprehensive list of benefits, please visit our website: https://jobs.jobvite.com/carfax/p/benefits

• 10X Virginia Business Best Places to Work
• 10X Washingtonian Great Places to Work
• 9X Washington Post Top Workplace
• St.Louis Post-Dispatch Best Places to Work

CARFAX, part of S&P Global Mobility, helps millions of people every day confidently shop, buy, service and sell used cars with innovative solutions powered by CARFAX vehicle history information. The expert in vehicle history since 1984, CARFAX provides exclusive services like CARFAX Used Car Listings, CARFAX Car Care, CARFAX History-Based Value and the flagship CARFAX Vehicle History Report to consumers and the automotive industry. CARFAX owns the world's largest vehicle history database and is nationally recognized as a top workplace by The Washington Post and Glassdoor.com. Shop, Buy, Service, Sell - Show me the CARFAX. S&P Global Mobility is a division of S&P Global (NYSE: SPGI). S&P Global is the world's foremost provider of credit ratings, benchmarks, analytics and workflow solutions in the global capital, commodity and automotive markets.

US Equal Opportunity Employer Statement: CARFAX is an Affirmative Action / Equal Opportunity Employer. It is the policy of CARFAX to provide equal employment opportunity to all persons regardless of race, color, sex, pregnancy, religion, national origin, age, ancestry, citizenship status, veteran status, military status, disability or handicap, sexual orientation, genetic information or any other status protected by federal, state or local law. In addition, CARFAX will provide reasonable accommodations for qualified individuals with disabilities. We maintain a drug-free workplace. We are a participant in E-Verify.

Canadian Equal Opportunity Employer Statement: CARFAX Canada is an equal opportunity employer, and all qualified candidates will receive consideration for employment without regard to race / ethnicity, color, religion, sex, sexual orientation, gender identity, national origin, age, disability, marital status, military veteran status, unemployment status, or any other status protected by law.

We\'re committed to providing accommodations by request for candidates taking part in all aspects of the recruitment and selection process. For a confidential inquiry or to request an accommodation, please contact your recruiter or email privacy@carfax.com.