1+ months

Senior Threat Detection and Response (TDR) Analyst

Cox Communications Inc
Atlanta, GA 30303
Apply Now
Apply on the Company Site
*Primary Location: *6305 Peachtree Dunwoody Rd, Atlanta, GA, USA
*Division: *Cox Communications Inc
*Job Level: *Individual Contributor
*Travel: *No
*Schedule: *Full-time
*Shift: *Day Job
*Requisition Number: *213010
Cox Communications is searching for a Threat Detection & Response (TDR) Analyst that will join the Security Operations Center (SOC) and respond to cyber threats facing Cox networks, systems, and information assets. The TDR Analyst is engaged throughout the incident lifecycle from escalation to resolution and acts by collecting and analyzing threat intelligence, performing security monitoring activities, taking appropriate action based on exposure, and reporting recommendations to leadership. This position reports to the Senior Manager of Threat Detection and Response

Successful candidates will demonstrate a strong business acumen and possess a blend of general business, technology, and security competencies. This is a unique opportunity to work for a telecommunications company protecting national critical infrastructure.

*Primary Responsibilities: *

* Detect and respond to workstation, server and network incidents using SIEM, behavioral analytics, and network analysis to promptly detect and mitigate the impact of cyber incidents.

* Track, respond, and document cybersecurity incidents in a consistent and well-organized manner from detection through resolution.

* Perform analysis of log files from a variety of sources (e.g., Windows or Linux hosts, network traffic, firewalls, intrusion detection system [IDS] logs, or application logs) to identify potential threats to the environment.

* Perform incident triage, to include scope, urgency, and potential impact, making recommendations that enable expeditious remediation.

* Review and respond to questions and escalated security events from Tier I analysts.

* Stay current with the latest trends in threat intelligence, security monitoring and incident response.

* Collect and review intelligence data from relevant sources including subscription and open-source feeds.

* Create and monitor reference sets across different applications to support threat hunting and monitoring.

* Develop ad-hoc scripts to extend capabilities and complete tasks-at-hand.

Qualifications: *Minimum Requirements:*

* Four or more years of technical experience in the Information Security field.

* Experience with Log Management/SIEM tools (e.g., Arcsight, IBM/Qradar, Splunk, Mcafee/Nitro, ELK, LogRythm, others)

* Deep knowledge of cyber-attack stages (e.g., reconnaissance, scanning, enumeration, gaining access, escalation of privileges, maintaining access, network exploitation, covering tracks).

* Strong experience triaging security events using a variety of tools including SIEM / SOAR / XDR in a security operations environment.

* Experience with network traffic, firewalls, ID, proxies, antivirus, mail, and spyware solutions.

* Cloud experience with AWS and/or Azure environments.

* Intermediate to advanced programming / scripting language experience, such as PowerShell, Python, or Bash.

* Knowledge of network security architecture concepts including topology, protocols, components, and principles.

* Strong understanding of malware analysis concepts and methodologies.

* Proficiency with common cybersecurity frameworks and regulatory requirements like MITRE ATT&CK, Kill Chain, OWASP.

* Strong process execution, time management and organizational skills.

* Ability to communicate complex information, concepts, or ideas in a confident and well-organized manner through verbal, written, and/or visual means.


* BS in Computer Science, Information Systems, Engineering.

* Experience with endpoint security agents like Carbon Black or CrowdStrike.

* Experience with network forensics and associated toolsets, (Suricata, WireShark, PCAP, tcpdump) and analysis techniques.

* Experience with host-based detection and prevention suites like Microsoft SCEP or OSSEC.

* Experience navigating and working in hybrid cloud environments.

* Understanding of log collection and aggregation techniques, Elastic Search, Logstash, Kibana (ELK), syslog-NG, Windows Event Forwarding (WEF).

* SANS certifications: GCIH, GCFE, GCFA, GREM, GPEN, GWAPT, GXPN are preferred, but not required.

Who We Are
*About Cox Communications*
Cox Communications is committed to creating meaningful moments of human connection through broadband applications and services. The largest private telecom company in America, we proudly serve six million homes and businesses across 18 states. Were dedicated to empowering others to build a better future and celebrate diverse products, people, suppliers, communities and the characteristics that makes each one unique.

*About Cox *
We are the Cox family of businesses. Weve been making our mark since 1898 by building and evolving world-class businesses, staying true to our values, and encouraging top talent to always look for growth and impact while building a career with us. Our primary divisions - Cox Communications and Cox Automotive - are driving a new wave of innovation, powering smart cities with powerhouse broadband communications and pioneering greener, more progressive transportation alternatives for individuals and fleet operators. Were also expanding into new spaces like cleantech and healthcare to rev up our momentum toward building a better future for the next generation. Were looking for the talent today who will be our leaders tomorrow. Sound intriguing? Learn more about where we are today, where we hope youll be going with us, and the common purpose that unites us at coxenterprises.com.
Benefits of working at Cox may include health care insurance (medical, dental, vision), retirement planning (401(k)), and paid days off (sick leave, parental leave, flexible vacation/wellness days, and/or PTO). For more details on what benefits you may be offered, [visit our benefits page](http://jobs.coxenterprises.com/life-at-cox/benefits/).
Cox is an Equal Employment Opportunity employer - All qualified applicants/employees will receive consideration for employment without regard to that individuals age, race, color, religion or creed, national origin or ancestry, sex (including pregnancy), sexual orientation, gender, gender identity, physical or mental disability, veteran status, genetic information, ethnicity, citizenship, or any other characteristic protected by law.
Statement to ALL Third-Party Agencies and Similar Organizations: Cox accepts resumes only from agencies with which we formally engage their services. Please do not forward resumes to our applicant tracking system, Cox employees, Cox hiring manager, or send to any Cox facility. Cox is not responsible for any fees or charges associated with unsolicited resumes.
Posted: 2021-04-23 Expires: 2021-07-26
Sponsored by:
ADP Logo

Before you go...

Our free job seeker tools include alerts for new jobs, saving your favorites, optimized job matching, and more! Just enter your email below.

Share this job:

Senior Threat Detection and Response (TDR) Analyst

Cox Communications Inc
Atlanta, GA 30303

Join us to start saving your Favorite Jobs!

Sign In Create Account
Powered ByCareerCast