Grade ( relevant for internal applicants only ): 9
The Location: Glen Allen VA.
SOC team is responsible for the ongoing, operational component of enterprise information security. Security operations center staff consists primarily of security analysts who work together to detect, analyze, respond to, report on, and prevent cybersecurity incidents.
The S&P Global Security Operations Center (SOC) is the first line of defense for Information Security. Functioning as part of a global Cyber Defense team, The SOC reviews critical alerts, enhances security, investigates incidents, performs forensic analysis, and triages cyber events on around the clock basis.
What's in it for you:
S&P Global is in the process of building a brand new global in-house security operations center. A unique and exciting opportunity to assist building and being part of a new team. Help develop a team with your input.
Compensation/Benefits Information (US Applicants Only):
S&P Global states that the anticipated base salary range for this position is $56,600 to $117,500.
In addition to base compensation, this role is eligible for an annual incentive bonus.
Monitor and respond to alerts generated by our enterprise security tools.
Triage issues escalated by the Cyber Defense team ensuring quick and appropriate follow-up actions are taken.
Recommend alert tuning as required and participate in tuning process.
Improve our detection capabilities by building and enhancing alert rules and actively hunting for evidence of malicious activity.
Operate and maintain security tooling and platforms.
Follow and enhance security playbooks for the Security Operations Team
Work closely with the Incident Response Team to ensure time sensitive actions are performed quickly and diligently.
Work on various internal projects/initiatives such as UAT and POC of new SOC tools, working cross functionally with other teams/departments as a stakeholder.
Participate in firm sponsored training, red/blue team events.
Perform whitelisting/filtering of false positive signals
Block malicious network traffic and isolate infected hosts on internal networks
Participate in working with the Security automation team in developing cutting edge security enhancements
Relevant degree in Computer Science, IT Security, IT Management, IT Support, or related discipline is preferred.
1+ years' full-time experience in a Security Operations Centre or similar Cyber Security Analysis role including time spent on an intern or work experience program
Hands-on experience in at least one of the following Security domains.
Network Security including Intrusion Detection Systems (IDS)
Knowledge and experience of network and endpoint security technologies including: Snort/Suricata, Packet Capture (PCAP) Analysis using Wireshark
Windows system internals, knowledge of PowerShell
Linux Kernel and basic scripting (Bash/Python) knowledge
Analytical mind with strong attention to detail and a commitment to quality of service
Natural ability to thrive in a fast-paced and time-sensitive environment
Understanding of cloud security fundamentals for platforms such as AWS and Microsoft
At S&P Global, we don't give you intelligence--we give you essential intelligence. The essential intelligence you need to make decisions with conviction. We're the world's foremost provider of credit ratings, benchmarks and analytics in the global capital and commodity markets. Our divisions include S&P Global Ratings, S&P Global Market Intelligence, S&P Dow Jones Indices and S&P Global Platts. For more information, visit www.spglobal.com
S&P Global is an equal opportunity employer committed to making all employment decisions without regard to race/ethnicity, sex, pregnancy, gender identity or expression, color, creed, religion, national origin, age, disability, marital status (including domestic partnerships and civil unions), sexual orientation, military veteran status, unemployment status, or any other basis prohibited by federal, state or local law. Only electronic job submissions will be considered for employment.
If you need an accommodation during the application process due to a disability, please send an email to: EEO.Compliance@spglobal.com and your request will be forwarded to the appropriate person.