- Experience in incident handling and investigation including using formal chain-of-custody methods, forensic tools, and best practices - Ability to analyze incident logs, attack vectors, and understand vulnerabilities and exploits - Basic of scripting in Python, Bash, Perl, RegEx, or PowerShell. - Knowledge of one or more cybersecurity frameworks: Center for Internet Security (CIS), National Institute of Standards (NIST) or International Standards Organization (ISO). - Experience in conducting risk assessments that protect the business and adhere with compliance and privacy laws. - Knowledge of various operating system flavors including but not limited to Windows, Linux, Unix - Regularly research and identify emerging threats, TTPs in public and closed forums, and work with colleagues to access risk and implement/validate controls as necessary. - Assist with Security Operations activities, including but not limited to, triage of alarms/alerts, and perform technical security assessments. - Plan and execute regular incident response and postmortem exercises, with a focus on creating measurable benchmarks to show progress (or deficiencies requiring additional attention) - Provide support to business units launching new applications or infrastructure to verify that new products/offerings are not at risk of misconfiguration, compromise, or information leakage. - Perform other duties as assigned

- Bachelor’s degree in computer science information assurance, MIS or related field, or equivalent. - At least 1-2 years’ experience in information security administration, vulnerability management, security operations, or system administration. - On-the-job training in relevant roles relating to information security, threat and vulnerability management, system administration, or equivalent. - Proven trustworthiness and history of acting with integrity, taking pride in work, seeking to excel, being curious and adaptable, and communicating effectively with cross functional teams. - Self-starter requiring minimal supervision. - Excellence in communicating business risk and remediation requirements from assessments. - Analytical and problem-solving mindset. - Highly organized and efficient. - Demonstrated strategic and tactical thinking. - Stays current with the evolving threat landscape. - Preferably, one of the following: CEH, Certified SOC Analyst (CSA), and Certified Incident Handler - Be able to work under pressure