Sr. Lead Cybersecurity Analyst
Atlanta, GA, United States
Chick-fil-A
Home of the Original Chicken Sandwich<sup>®</sup>. See our menu and order the Chick-fil-A<sup>®</sup Chicken Sandwich, Waffle Potato Fries™, and more for pickup or delivery.Overview
Welcome to the Cybersecurity Incident Response & Operations team (CSIRT) at Chick-fil-A. We are a dedicated group focused on identifying and responding to cyber threats against our organization. As a Senior Lead Cybersecurity Analyst, you will apply your technical experience to help build and maintain capabilities around monitoring, detecting, and responding to cybersecurity threats, serving as a technical lead and subject matter expert on the team, and helping shape our team's efforts across the business.
Our Flexible Future model offers a healthy mix of working in person and virtually, strengthening key elements of the Chick-fil-A culture by fostering collaboration and community.
Responsibilities
- Triage and respond to security events and incidents from various sources, primarily coordinating with your peers through our SOAR platform.
- Partner with groups outside of Cybersecurity on triage and response efforts as needed for security events and incidents.
- Identify and propose new technologies, methodologies, and/or approaches to detecting malicious activity.
- Collaborate with peers on threat hunting and data analytics strategy and capabilities.
- Contribute to the maintenance of a SIEM solution through defect fixes, content updates, and new use-case development.
- Contribute to the maintenance of a SOAR solution through content updates and new use-case development.
- Contribute to the maintenance of anti-phishing preventative platforms through new detection and triage rule development.
- Collaborate with external security partners on detection and response to cyber threats.
- Research threat landscape and trends to adapt our capabilities to keep pace with malicious actors.
- Provide investigation findings to relevant business units to help improve cybersecurity posture.
- Identify and conduct operational intelligence analysis to identify process and capability improvement opportunities for the CSIRT team.
- Represent CSIRT team’s perspective and objectives in consultant-like collaborative efforts with Cybersecurity peers and colleagues in DTT.
- Participate in threat modeling collaboration with other members of the cybersecurity team.
Minimum Qualifications
- Strong understanding of cybersecurity principles, practices, and technologies.
- Proficiency in using security tools such as SIEM (Security Information and Event Management), SOAR (Security Orchestration, Automation, and Response), and anti-phishing platforms.
- Experience in threat hunting, incident response, and forensic analysis.
- Knowledge of networking protocols, operating systems, and cloud environments.
- Familiarity with programming languages like Python, PowerShell, or scripting for automation.
- Ability to analyze security events, incidents, and trends to identify threats and vulnerabilities.
- Strong problem-solving skills to investigate and resolve complex cybersecurity issues.
- Aptitude for researching and staying updated on the latest cybersecurity threats and trends.
- Strong communication skills to articulate technical concepts to non-technical stakeholders and present findings to business units.
- Flexibility to adapt to evolving cybersecurity threats and technologies.
Preferred Qualifications
- Experience with Palo Alto Cortex XSOAR
- Experience with Splunk Enterprise Security
- Experience with Sublime Security
- Experience with DataDog
- Experience with AWS Cloud Services
- Experience detecting and responding to threats in Kubernetes environments.
- OSCP, GSEC, GCED, GCIH, CISSP, GMON
Minimum Years of Experience
5Travel Requirements
10%Required Level of Education
High SchoolPreferred Level of Education
Bachelor's Degree* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰
Tags: Analytics Automation AWS CISSP Cloud CSIRT Data Analytics GCED GCIH GSEC Incident response Kubernetes Monitoring OSCP PowerShell Python Scripting SIEM SOAR Splunk Strategy Vulnerabilities XSOAR
Perks/benefits: Flex hours Team events
More jobs like this
Explore more InfoSec / Cybersecurity career opportunities
Find even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.
- Open Product Security Engineer jobs
- Open Cloud Security Architect jobs
- Open Security Operations Engineer jobs
- Open Information Security Specialist jobs
- Open Information Security Officer jobs
- Open Principal Security Engineer jobs
- Open Senior Cyber Security Engineer jobs
- Open Senior Product Security Engineer jobs
- Open Cyber Security Architect jobs
- Open Chief Information Security Officer jobs
- Open IT Security Engineer jobs
- Open Senior Penetration Tester jobs
- Open Staff Security Engineer jobs
- Open Cyber Security Specialist jobs
- Open Security Specialist jobs
- Open Ethical hacker / Pentester H/F jobs
- Open Senior Network Security Engineer jobs
- Open Security Consultant jobs
- Open Cybersecurity Consultant jobs
- Open IT Security Analyst jobs
- Open Security Operations Analyst jobs
- Open Senior Information Security Analyst jobs
- Open Manager Pentest H/F jobs
- Open Information System Security Officer jobs
- Open Senior Information Security Engineer jobs
- Open Agile-related jobs
- Open Risk assessment-related jobs
- Open SOC-related jobs
- Open Network security-related jobs
- Open Analytics-related jobs
- Open CISA-related jobs
- Open ISO 27001-related jobs
- Open GCP-related jobs
- Open IAM-related jobs
- Open Application security-related jobs
- Open Pentesting-related jobs
- Open Vulnerability management-related jobs
- Open Threat intelligence-related jobs
- Open DevOps-related jobs
- Open DoD-related jobs
- Open Security Clearance-related jobs
- Open APIs-related jobs
- Open CEH-related jobs
- Open Security assessment-related jobs
- Open SaaS-related jobs
- Open Malware-related jobs
- Open Kubernetes-related jobs
- Open EDR-related jobs
- Open Java-related jobs
- Open DevSecOps-related jobs