Incident Response Specialist

Wabtec Corporation is a leading global provider of equipment, systems, digital solutions and value-added services for freight and transit rail. Drawing on nearly four centuries of collective experience across Wabtec, GE Transportation and Faiveley Transport, the company has unmatched digital expertise, technological innovation, and world-class manufacturing and services, enabling the digital-rail-and-transit ecosystems. Wabtec is focused on performance that drives progress, creating transportation solutions that move and improve the world. Wabtec has approximately 27,000 employees in facilities throughout the world. Visit the company’s new website at: http://www.WabtecCorp.com.

It’s not just about your career… or your job title…it’s about who you are and the impact you are going to make on the world. Do you want to go into uncharted waters…do things that haven’t been done to make yours and someone else's life better? Wabtec has been doing that for decades and we will continue to do so! Through our people, leadership development, services, technology and scale, Wabtec delivers better outcomes for global customers by speaking the language of industry.

It’s not just about your career or job title… It’s about who you are and the impact you will make on the world. Because whether it’s for each other or our customers, we put People First. When our people come together, we Expand the Possible and continuously look for ways to improve what we create and how we do it. If you are constantly striving to grow, you’re in good company. We are revolutionizing the way the world moves for future generations, and we want someone who is ready to move with us.

Who are we?

Wabtec Corporation is a leading global provider of equipment, systems, digital solutions, and value-added services for freight and transit rail as well as the mining, marine, and industrial markets. Drawing on nearly four centuries of collective experience across Wabtec, GE Transportation, and Faiveley Transport, the company has grown to become One Wabtec, with unmatched digital expertise, technological innovation, and world-class manufacturing and services, enabling the digital-rail-and-transit ecosystems.

Wabtec is focused on performance that drives progress and unlocks our customers’ potential by delivering innovative and lasting transportation solutions that move and improve the world. We are lifelong learners obsessed with making things better to drive exceptional results. Wabtec has approximately 27K employees in facilities throughout the world. Visit our website to learn more!

Summary

You are an information security professional excited by the opportunity to be part of the team that’s designing and building a Security Operations program from the ground up. You will be responsible for handling the entire lifecycle of security incidents from detection to resolution and root cause analysis.

In this role you will be responsible for handling and escalating security incidents and owning critical security projects. You should be comfortable with learning, develop and deploy new technologies. You will also be involved in supporting SIEM operations, content development, log ingestion and parsing, threat intelligence analysis, threat hunting activities and Cloud security monitoring.

Duties and Responsibilities:

In this role, you will:

• Detect, investigate, and respond to security events sourcing from network firewalls, Intrusion Detection Systems, SIEM, Web Application Firewall, Mail Gateway, DLP and other sources.
• Leverage extensive experience in threat analysis, detection, hunting, and/or incident response.
• Participate in threat hunting activities and drive analysis of intelligence data and telemetry.
• Integrate tools, playbooks, and SOPs into a consolidated operating model (including SIEM, SOAR, EDR, and others).
• Develop new technical solutions and processes to help mitigate security vulnerabilities and automate repeatable tasks.
• Drive selection of new technologies to improve cyber capabilities.
• Work closely with 24/7/365 monitoring, incident detection, and response with both internal resources and a MSS provider.
• Advise on the design of security monitoring infrastructure for on premise and cloud solutions.
• Participate in After-Action Report (AARs) and Intelligence Briefing creation and ensure the business understand the risks and post incident threats.

Skills and Experience:

.

• Bachelor’s degree in computer engineering or in a STEM major (Science, Technology, Engineering, or Math) and a minimum of 3 years of equivalent experience.
• Ability to maintain a high level of discretion and personal integrity in the exercise of duties.
• Excellent communication skills with the ability to manage joint response and remediation efforts and constructively influence peers and leadership.
• Must be willing to work off-shift hours, as needed during incidents.
• Experience with project management processes including Agile methodology.
• Previous exposure to security frameworks and standards including MITRE ATT&CK, ISO 27001, ISO 27002, RMF, etc.

• Experience in any of the following: Digital Forensics & Investigative Response (DFIR), threat intelligence, penetration testing, or security research.
• Ability to code as needed to solve problems and automate workflows (Python, Terraform, or PowerShell) and develop tools and scripts.
• Experienced using SIEM (esp. Splunk) and SOAR, for both investigation and threat hunting.
• Drive the design, build, implementation, and compliance monitoring of security controls.
• Experience deploying/evading network monitoring technologies and host-based detection tools.
• CISSP, CEH, OSCP, or related SANS certifications preferred.

Our Commitment to Embrace Diversity:

Wabtec is a global company that invests not just in our products, but also our people by embracing diversity and inclusion. We care about our relationships with our employees and take pride in celebrating the variety of experiences, expertise, and backgrounds that bring us together. At Wabtec, we aspire to create a place where we all belong and where diversity is welcomed and appreciated.   

To fulfill that commitment, we rely on a culture of leadership, diversity, and inclusion. We aim to employ the world’s brightest minds to help us create a limitless source of ideas and opportunities. We have created a space where everyone is given the opportunity to contribute based on their individual experiences and perspectives and recognize that these differences and diverse perspectives make us better.

We believe in hiring talented people of varied backgrounds, experiences, and styles… People like you! Wabtec Corporation is committed to equal employment opportunity regardless of race, color, ancestry, religion, sex, national origin, sexual orientation, age, citizenship, marital status, disability, gender identity or expression, or protected Veteran status. If you have a disability or special need that requires accommodation, please let us know.

Wabtec Corporation is committed to taking on the world’s toughest challenges. In order to fulfill that commitment we rely on a culture of leadership, diversity and inclusiveness. We aim to employ the world’s brightest minds to help us create a limitless source of ideas and opportunities. We believe in hiring talented people of varied backgrounds, experiences and styles…people like you! Wabtec Corporation is committed to equal employment opportunity regardless of race, color, ancestry, religion, sex, national origin, sexual orientation, age, citizenship, marital status, disability, gender identity or expression, or protected Veteran status. If you have a disability or special need that requires accommodation, please let us know.