Senior SOC Analyst, Cyber Security Operations Center (Incident Response)

Company: Capital One
Location: Virginia Beach
Posted on: November 14, 2021

Job Description:

Center 2 (19050), United States of America, McLean, Virginia Senior SOC Analyst, Cyber Security Operations Center (Incident Response) With team members in McLean, VA, and Nottingham, UK, the Cyber Security Operation Center Response team at Capital One investigates cyber security concerns, implementing containment and eradication as needed, and coordinating recovery. The associate in this role will respond to cybersecurity incidents which have the potential to impact the confidentiality, integrity, or availability of Capital One information assets. General Responsibilities: Support day-to-day cybersecurity threat detection and incident response operations Understand technology infrastructure and operational processes in order to enable a more effective incident response process Perform root cause analysis to develop and effectuate comprehensive containment, eradication, and recovery actions Train and mentor junior analysts on performing thorough investigation toward root cause analysis Communicate deep technical security threat & operations awareness across the Cyber division, to include the CISO and CIO Maintain Incident Response incident response playbooks, processes and workflows, and tools Identify and enhance processes where automation has the potential to improve efficiency Coordinate with and support the Cyber Incident and Event Management team during incidents and other high priority matters Coordinate with various Information Security Officer teams in clarifying security risks, and roles and responsibilities related to ongoing Incident Response cases Provide support to operational & cybersecurity strategy development Provide guidance and direction on best practices for the protection of information Maintain updated knowledge of best practices in Cybersecurity Operations and Incident Response processes to identify and recommend new technologies and/or processes with the potential to enhance operations Utilize industry recognized frameworks such as NIST 800-61 to perform and document work activities, and to preserve evidence Basic Qualifications: High School Diploma, GED or Equivalent Certification At least 5 years of experience in a Security Operations Center At least 3 years of experience in Network Security and Security Perimeters At least 3 years of experience with TCP IP protocol analysis At least 3 years of experience with packet capture devices, syslog, netflow and application performance management At least 3 years of experience with cyber threat analysis Preferred Qualifications: Bachelor's Degree in Computer Science, Information Systems, Engineering or similar fields. Multiple certifications across AWS Certified Security, GCFE, GCFA, GNFA, and GREM level certifications Experience using EnCase, FTK Imager, or Magnet Axiom Experience using Volatility for memory analysis Experience performing static malware analysis At this time, Capital One will not sponsor a new applicant for employment authorization for this position. No agencies please. Capital One is an Equal Opportunity Employer committed to diversity and inclusion in the workplace. All qualified applicants will receive consideration for employment without regard to sex, race, color, age, national origin, religion, physical and mental disability, genetic information, marital status, sexual orientation, gender identity/assignment, citizenship, pregnancy or maternity, protected veteran status, or any other status prohibited by applicable national, federal, state or local law. Capital One promotes a drug-free workplace. Capital One will consider for employment qualified applicants with a criminal history in a manner consistent with the requirements of applicable laws regarding criminal background inquiries, including, to the extent applicable, Article 23-A of the New York Correction Law; San Francisco, California Police Code Article 49, Sections 4901-4920; New York City's Fair Chance Act; Philadelphia's Fair Criminal Records Screening Act; and other applicable federal, state, and local laws and regulations regarding criminal background inquiries. If you have visited our website in search of information on employment opportunities or to apply for a position, and you require an accommodation, please contact Capital One Recruiting at 1-800-304-9102 or via email at RecruitingAccommodationcapitalone.com . All information you provide will be kept confidential and will be used only to the extent required to provide needed reasonable accommodations. For technical support or questions about Capital One's recruiting process, please send an email to Careerscapitalone.com Capital One does not provide, endorse nor guarantee and is not liable for third-party products, services, educational tools or other information available through this site. Capital One Financial is made up of several different entities. Please note that any position posted in Canada is for Capital One Canada, any position posted in the United Kingdom is for Capital One Europe and any position posted in the Philippines is for Capital One Philippines Service Corp. (COPSSC).

Keywords: Capital One, Virginia Beach , Senior SOC Analyst, Cyber Security Operations Center (Incident Response), Professions , Virginia Beach, Virginia