Sr. Cyber Security Operations Analyst - Hybrid (Houston or Dallas, TX)

Company Description

Work with Us. Change the World.

At AECOM, we're delivering a better world. Whether improving your commute, keeping the lights on, providing access to clean water, or transforming skylines, our work helps people and communities thrive. We are the world's trusted infrastructure consulting firm, partnering with clients to solve the world’s most complex challenges and build legacies for future generations.

There has never been a better time to be at AECOM. With accelerating infrastructure investment worldwide, our services are in great demand. We invite you to bring your bold ideas and big dreams and become part of a global team of over 50,000 planners, designers, engineers, scientists, digital innovators, program and construction managers and other professionals delivering projects that create a positive and tangible impact around the world.

We're one global team driven by our common purpose to deliver a better world. Join us.

Job Description

AECOM is seeking a Senior Security Analyst for our Global Cyber Security Operations Center (CSOC).

This position offers flexibility for hybrid work schedules to include both in-office presence and virtual/telecommute, to be based from either Houston or Dallas, TX.

The position will support operations in the Europe and India regions thus requiring working hours to correspond with European time zones.

This role will be an integral part of a high performing team providing triage and response services as part of a "follow the sun" model. The successful candidate will be responsible for partnering with members of IT in various global regions for incident containment and remediation.

Periodically the analyst will also be expected to liaise with the organization's IT and security leadership in support of security OR business project(s) with security implications. These projects typically target expansion or improvements to CSOC capabilities or new AECOM business development.

The ideal candidate for this role is an experienced professional with a broad level of experience in multiple areas of IT and a strong emphasis on Cyber Security. This includes awareness of current security risks, threats and targeted attack methods, techniques and tactics. In addition, the candidate should possess strong analytical skills and have an inherent passion for seeking knowledge, sharing knowledge and continuous process improvement.

Key Responsibilities:

• Monitoring, triaging and investigating Security Alerts to identify Security Incidents
• Responding to identified Security Incidents, determining scope and root cause, and documenting the response in accordance with the relevant policies and procedures.
• Producing written reports to management after large scale incidents.
• Providing recommendations post-incident to mitigate any failed security controls.
• Providing feedback to on false positive alerts and suggesting appropriate tuning to stop any reoccurrence.
• Accepting ongoing incidents handed off from the previous shift, and communicating the status of new and ongoing incidents to be handed off to the following shift.
• Assisting in the management and maintenance of playbooks and runbooks, both manual and automated; making recommendations for improvements where appropriate.
• Assisting in the development of operational metrics and dashboard reporting.
• Performing threat & malware analysis and research.
• Mentoring and knowledge sharing with local and global CSOC team members.
• Collaborating with cross-functional, global teams to develop and implement security policies and procedures.
• Collaborating with other IT departments to ensure that security tools and solutions are fully integrated across the environment.
• Staying up to date with emerging security trends and technologies, particularly in Incident Response.

Qualifications

Minimum Requirements:

• BA/BS plus at least 6 years of relevant experience including in Information Security with a focus on Incident Response, Security Engineering, and/or Intrusion Detection, or demonstrated equivalency of experience and/or education
• Proficient understanding of incident response automation strategies, with demonstrated ability to implement them
• Proficient understanding of threat modeling, operational threat intelligence, and common attack vectors
• In-depth technical knowledge of Windows Operating Systems
• Excellent oral/written communication skills (in English).
• Must be able to work Europe hours
• Must be able to work one on-call weekend approximately every 6-8 weeks.

Preferred Qualifications:

• Bachelor degree in Cyber Security, Computer Science, or similar
• Experience with disk and memory forensic tools
• Experience triaging malware
• Exceptional analytical and investigative skills with hands-on experience, with demonstrated ability to analyze endpoint, network, and application logs
• Proficient in one or more programming/scripting languages
• Experience working with a global company and team.
• Ability to pass a thorough background check.
• Relevant certifications such as CISSP, CISM, CEH, CompTIA, GIAC, or similar.
• Strong analytical and problem-solving skills,
• Able to work well on a virtual team without close Supervision.
• Experience with built-in OS shell commands and 3rd party command line tools.
• Familiarity with general IT security best practices and controls.
• Strong Understanding of low-level concepts including operating systems, Active Directory, windows and Linux server environments, alongside computer networking.
• Experience with cloud security solutions (AWS, Azure, Google Cloud).

Additional Information

• Relocation assistance is not available for this position.
• Sponsorship for US work authorization is not available for this position now or in the future

About AECOM

AECOM is proud to offer comprehensive benefits to meet the diverse needs of our employees. Depending on your employment status, AECOM benefits may include medical, dental, vision, life, AD&D, disability benefits, paid time off, leaves of absences, voluntary benefits, perks, well-being resources, employee assistance program, business travel insurance, service recognition awards, retirement savings plan, and employee stock purchase plan.

AECOM is the world’s trusted infrastructure consulting firm, delivering professional services throughout the project lifecycle – from advisory, planning, design and engineering to program and construction management. On projects spanning transportation, buildings, water, new energy and the environment, our public- and private-sector clients trust us to solve their most complex challenges. Our teams are driven by a common purpose to deliver a better world through our unrivaled technical and digital expertise, a culture of equity, diversity and inclusion, and a commitment to environmental, social and governance priorities. AECOM is a Fortune 500 firm and its Professional Services business had revenue of $14.4 billion in fiscal year 2023. See how we are delivering sustainable legacies for generations to come at aecom.com and @AECOM.

Freedom to Grow in a World of Opportunity 

You will have the flexibility you need to do your best work with hybrid work options. Whether you’re working from an AECOM office, remote location or at a client site, you will be working in a dynamic environment where your integrity, entrepreneurial spirit and pioneering mindset are championed.

You will help us foster a safe and respectful workplace, where we invite everyone to bring their whole selves to work using their unique talents, backgrounds and expertise to create transformational outcomes for our clients.

AECOM provides a wide array of compensation, benefits and well-being programs to meet the diverse needs of our employees and their families. We’re the world’s trusted global infrastructure firm, and we’re in this together – your growth and success are ours too.

Join us, and you’ll get all the benefits of being a part of a global, publicly traded firm – access to industry-leading technology and thinking and transformational work with big impact and work flexibility. As an Equal Opportunity Employer, we believe in each person’s potential, and we’ll help you reach yours.

All your information will be kept confidential according to EEO guidelines.