Cyber Incident Response Lead - Advanced Response Team (Remote)

Job Posting - Salary Range: $129,232 - $232,617

Company Description

Experian is a global data and technology company, powering opportunities for people and businesses around the world. We help to redefine lending practices, uncover and prevent fraud, simplify healthcare, create marketing solutions, and gain deeper insights into the automotive market, all using our unique combination of data, analytics and software. We also assist millions of people to realize their financial goals and help them save time and money.

We operate across a range of markets, from financial services to healthcare, automotive, agribusiness, insurance, and many more industry segments.

We invest in people and new advanced technologies to unlock the power of data. As a FTSE 100 Index company listed on the London Stock Exchange (EXPN), we have a team of 22,500 people across 32 countries. Our corporate headquarters are in Dublin, Ireland. Learn more at experianplc.com

Job Description

As a member of Experian's Global Security Office (EGSO)/Cyber Fusion Center (CFC), you will respond, contain, escalate, investigate, and coordinate mitigation of security events relative to anomalies detected and escalated by the Cyber Fusion Center according to Experian's Incident Response Plan. You will join a growing team of specialized, advanced responders supporting escalations of complex security incidents from 24x7 security monitoring and response functions. Your role involves responding to threats targeting Experian information assets, working with end-users, technical teams, and management to ensure effective remediation and recovery.

You will report to the Senior Manager, Global Incident Response.

Responsibilities include:

• Conducting advanced incident response activities to investigate and contain cybersecurity issues.
• Coordinating work across Forensics and Cyber Threat Hunting teams and analyzing attacker activity timelines.
• Responding to security events and alerts related to threats, intrusions, or compromises.
• Managing multiple security cases through analysis, containment, eradication, recovery, and lessons learned.
• Documenting cases thoroughly, including analysis findings and containment steps.
• Maintaining an understanding of operating systems, security technologies, and networking to support incident response.
• Interpreting logs from various sources to identify root causes and next steps.
• Mentoring analysts and providing advanced support.
• Supporting the overall security strategy and direction of the CFC.

Qualifications

• Bachelor's Degree in relevant fields or 8+ years experience in Security Operations or Incident Response.
• Knowledge of Incident Response methodologies and network protocols.
• Experience with SIEMs, packet capture tools, and network analysis tools.
• Familiarity with intrusion methods and attack TTPs.
• Certifications such as GCIH, CEH, GNFA, CNFE, or security management certifications like CISSP or CISM.
• Availability for on-call work outside normal hours.

Benefits/Perks

• Competitive compensation and bonus.
• Core benefits including medical, dental, vision, and 401K matching.
• Remote, hybrid, or in-office work options.
• Flexible time off including volunteer days, vacation, sick leave, and holidays.

Additional Information

Experian values diversity and inclusion, offering a supportive environment for all employees. We are committed to equal opportunity employment and accommodating disabilities or special needs.

This is a remote position.