Cyber Threat Detection Engineer

Equifax seeks a Cyber Threat Detection Engineer to provide incident response guidance and analytic capabilities to an enterprise-wide cybersecurity program.  The successful candidate for this position has technical knowledge in developing detection content utilizing a wide range of security tools including SIEM, EDR, IPS/IDS, DLP, and/or SOAR. Candidates will also have experience working in a cyber security operations team performing incident response, threat hunting, and/or network and system monitoring. The position will include a robust assortment of security initiatives that support the global security team.

What you’ll do:

• Create and implement detection and prevention controls using a range of security tools (SIEM, DLP, IPS/IDS, EDR)
• Management and implementation of network and security tools to support incident response
• Implement controls to identify new attack TTPs and mitigation techniques in support of daily operations
• Compile metrics and reports in support of SOC program objectives and priorities
• Develop and refine use-case scenarios for new and existing analytical tools
• Support SOC-specific activities for the day-to-day operations
• Work with internal subject matter experts (SOC/Threat Resistance/Investigations) to aid in interdicting active threats
• Enrich team value by sharing knowledge

What experience you need:

• Bachelor’s degree in Cyber Security, Computer Science, or a related field.
• 2+ years of general Information Security experience required.
• 2+ years working as a Threat Detection Engineer professional is required.
• 2+ years working with one or more of the following tools (SIEM, EDR, DLP, SOAR, IPS/IDS, CSPM)
• 2+ years working as a cyber security analyst (SOC, CIRT, Cyber Intelligence)
• 2+ years of knowledge of tools used for network security (DLP, NIPS, HIPS, AV, Firewalls, etc.)
• English language proficiency B2+ minimum (Emmersion Test)

What could set you apart:

• Technical certifications (CISSP, CCNA, GCIA, GCIH, etc.)
• Ability to effectively manage multiple, concurrent activities, while understanding and managing priorities, dependencies, and risk
• Thorough understanding of network protocols
• Strong understanding of *nix and Windows operating system functionality
• Strong research, analytic, writing, and briefing skills.
• Demonstrated flexibility, initiative, judgment, and discretion.
• Willingness to learn new tools and processes and proven track record of learning new technologies, methodologies, and skills.
• Organizational, time management, customer service, and problem-solving skills, experience without a degree

Primary Location:

CRI-Sabana

Function:

Function - Security Governance and Compliance

Schedule:

Full time