Lead Cyber Defense Incident Responder

Open to remote work except in South Dakota, Vermont and West Virginia.

The annual base salary for this position ranges from $112,600.00 in our lowest geographic market to $251,800.00 in our highest geographic market. Actual salary will vary based on a candidate's location, qualifications, skills and experience.

Information about benefits can be found here.
 

• Become a Part of the Nike Team Nike does more than outfit the world’s best athletes. We are a place to explore potential, obliterate boundaries, and push out the edges of what can be.

  We’re looking for people who can grow, think, dream, and create. We thrive in a culture that embraces diversity and rewards imagination. We seek achievers, leaders, and visionaries. At Nike, it’s about bringing what you have to a challenging and constantly evolving game.

  Nike Tech brings together technology and process expertise to create value for the consumer. We deliver one-stop, integrated process and technology capabilities that enable Nike, Inc.'s businesses and brands worldwide. Our focus is on providing Lean solutions that eliminate waste, maximize consumer value, and drive profitable business growth.

  As a Cyber Defense Professional, your role on the team will include leveraging your knowledge of industry best practices, good judgment, and problem-solving skills to execute Nike security operations. Being on Nike’s front lines of defense, the Cyber Defense Professional is adept at making good decisions under pressure and can quickly adapt to any security challenge. This individual also pays attention to detail and is disciplined in documenting processes and procedures. The Cyber Defense Professional is responsible for triaging requests coming into the department making sure departmental SLAs are met. The Cyber Defense Professional’s motto is operational excellence, continual process improvement, and customer service.

  What We Are Looking For: If this is you, you’ll be working with the Cybersecurity Incident Response team and performing these key tasks:

  • Use a wide range of tools and experience to perform the incident response functions, focusing primarily on cloud security, application security and Unix/Linux operating systems.

  • Work closely with Incident Coordinators and will assist in defining the scope, framework, and procedures to facilitate and measure successful security incident management.

  • Responsible for working with other Information Security staff to enhance or develop new security controls to proactively reduce further issues or provide enriched detective and reactive capabilities. • Requires a bachelor’s degree in computer science or related field, or equivalent work experience

  • Seven years of information technology experience with five years in an information security-related role

  • Solid knowledge of information security principles and practices

  • Minimum five years of security monitoring experience and incident response activities; preferably within a professional services firm or similar environment

  • Strong knowledge of incident response and crisis management with the ability to identify both tactical and strategic solutions using strong verbal and written communication skills

  • Cloud security knowledge and skills; securing cloud environments as well as detecting and responding to cyber security incidents in the cloud

  • Log (network, security, access, OS, application, etc.) analysis skills and experience in relation to identifying and investigating security incidents

  • Proficiency with Linux/UNIX, Windows, and/or Mac OSX

  • Proven analytical, problem-solving, and troubleshooting skill

  • Coding/scripting experience (PowerShell, Python, Ruby, Java, VB Scripting etc.)

  • Comfortable with interfacing with other internal or external organizations regarding security policy and standards violations, security controls failure and incident response situations

  • Understanding of network, desktop, and server technologies, including experience with network intrusion methods, network containment, segregation techniques and technologies such as Intrusion Detection Systems (IDS) and Intrusion Protection Systems (IPS)

  • The ability to learn and apply new concepts quickly • Resolves problems independently and/or through a support team.

  • Ability to balance and prioritize work

  • Must be trustworthy in keeping sensitive data confidential • One or more of the following professional certifications preferred, but not required:

  • Certified Information Security Professional (CISSP) • Global Information Assurance Certifications (GIAC)

  • Speaking a language in addition to English preferred, but not required