Principal Incident & Threat Analyst
Riverwoods, IL
Applications have closed
Discover
Discover bank offers online banking, reward credit cards, home equity loans, and personal loans to help meet your financial needs.Discover. A brighter future.
With us, you’ll do meaningful work from Day 1. Our collaborative culture is built on three core behaviors: We Play to Win, We Get Better Every Day & We Succeed Together. And we mean it — we want you to grow and make a difference at one of the world's leading digital banking and payments companies. We value what makes you unique so that you have an opportunity to shine.
Come build your future, while being the reason millions of people find a brighter financial future with Discover.
Job Description:
At Discover, be part of a culture where diversity, teamwork and collaboration reign. Join a company that is just as employee-focused as it is on its customers and is consistently awarded for both. We’re all about people, and our employees are why Discover is a great place to work. Be the reason we help millions of consumers build a brighter financial future and achieve yours along the way with a rewarding career.
What You’ll Do
Guides and supports incident response teams through mastery of the information, data, and technology available. Maintains expert-level knowledge of detection capabilities and attacker techniques. Develops effective security controls to enhance the business environment and improves management decision making. Actively manages and escalates risk and customer-impacting issues within the day-to-day role to management.
How You’ll Do It
Incident lead for all analysis and response functions during high impact cyber events. Conducts malware analysis to identify indicators of compromise, determine scope, and assess impact. Translate technical details pertaining to threats and incidents into consumable elements for non-technical groups.
Develops mitigation and countermeasure strategies based on knowledge of attack tactics and techniques
Develops innovative solutions which enable rapid analysis and response to security incidents at the enterprise scale
Builds and maintains effective relationships with peers and internal business partners.
Delivers presentations and executive briefings regarding relevant security incidents and findings to senior management.
Assist in the design and development of security solutions and processes consistent with Cyber Incident and Threat Management program goals. Provides program subject matter expertise to influence Cyber-led security optimization initiatives. Collects and documents, and implements solutions to remediate identified lessons learned
Enriches team value by creating training and knowledge sharing opportunities.
Utilize knowledge of the MITRE ATT&CK framework to overlay researched threats to existing controls
Work with the alert logic creation team to develop succinct detection rules to identify threats in the environment
Review triage and incident cases for trend analysis
Conduct threat briefings across the enterprise at varying levels of knowledge and understanding.
Work with the Enterprise Vulnerability Management team to identify and address emergent threats to the firm
Coordinate with the Incident and Crisis Management team to mitigate the risk of external vendor compromises
Educate members of the Cyber Security group on relevant threats to the environment and to our vertical
Create and disseminate Threat Bulletins, Reports, and Updates on a regular basis
Monitor and track threat actors/groups identified as most likely to attack the firm and/or our vertical and work with relevant internal teams on defensive measures
Monitor Intelligence feeds/sources for work initiation
Develop/Mentor junior members of the team through training and knowledge sharing opportunities.
Key contributor to strategy and prioritization of program initiatives
Coordinate prioritization of team assignments with Sr. Manager
Qualifications You’ll Need
The Basics
Bachelor’s degree in Computer Science or Information Technology.
6+ years of experience with Information Security, Computer Science, Data Analytics, or related.
In lieu of education, 8+ years of experience with Cybersecurity, Software Engineering, Data Analytics, or related.
Preferred Qualifications
If we had our say, we’d also look for:
Certifications in GIAC, Security +, or Network +
Prior Cyber Threat Intelligence Experience
Demonstrable experience with cyber threat intelligence vendor tools and services
Knowledge and understanding of the Intelligence Lifecycle
Experience building common Threat Intelligence products
MITRE ATT&CK Framework
CISA Known Exploited Vulnerabilities list
GIAC (GCTI or GCIH or GCIA)
What are you waiting for? Apply today!
And by the way, while you’re waiting to hear from us, don’t forget to check out the great benefits Discover offers.
The same way we treat our employees is how we treat all applicants – with respect. Discover Financial Services is an equal opportunity employer (EEO is the law). We thrive on diversity & inclusion. You will be treated fairly throughout our recruiting process and without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, veteran status or any other characteristic protected by federal, state, or local law in consideration for a career at Discover.
Discover will not sponsor or transfer employment work visas for this position. Applicants must be currently authorized to work in the United States on a full-time basis.
Application Deadline:
The application window for this position is anticipated to close on Oct-16-2024. We encourage you to apply as soon as possible. The posting may be available past this date, but it is not guaranteed.Compensation:
The base pay for this position generally ranges between $88,500.00 to $149,300.00. Additional incentives may be provided as part of a market competitive total compensation package. Factors, such as but not limited to, geographical location, relevant experience, education, and skill level may impact the pay for this position.Benefits:
We also offer a range of benefits and programs based on eligibility. These benefits include:
Paid Parental Leave
Paid Time Off
401(k) Plan
Medical, Dental, Vision, & Health Savings Account
STD, Life, LTD and AD&D
Recognition Program
Education Assistance
Commuter Benefits
Family Support Programs
Employee Stock Purchase Plan
Learn more at mydiscoverbenefits.com.
What are you waiting for? Apply today!
All Discover employees place our customers at the very center of our work. To deliver on our promises to our customers, each of us contribute every day to a culture that values compliance and risk management.
Discover is committed to a diverse and inclusive workplace. Discover is an equal opportunity employer and does not discriminate on the basis of race, color, religion, sex, sexual orientation, gender identity, national origin, age, disability, protected veteran status, or other legally protected status. (Know Your Rights & Pay Transparency Nondiscrimination Provision)
Discover complies with federal, state, and local laws applicable to qualified individuals with disabilities and is committed to providing reasonable accommodations. If you require a reasonable accommodation to search for a position, to complete an application, and/or to participate in an interview, please email HireAccommodation@discover.com. Any information you provide regarding your accommodation needs will be kept confidential and will only be used to determine and provide necessary accommodation.
Tags: Analytics Banking CISA Compliance Computer Science Data Analytics GCIA GCIH GCTI GIAC Incident response Malware MITRE ATT&CK Risk management Strategy Threat intelligence Vulnerabilities Vulnerability management
Perks/benefits: Career development Competitive pay Equity / stock options Health care Medical leave Parental leave Team events Transparency
More jobs like this
Explore more career opportunities
Find even more open roles below ordered by popularity of job title or skills/products/technologies used.