Security Incident Response
AMER - Canada - British Columbia - Vancouver - 550 Robson St
Full Time Mid-level / Intermediate USD 73K - 107K
Autodesk
Job Requisition ID #
24WD76733Position Overview
The Security Incident Response Engineer is responsible for monitoring, identifying, assessing, containing, and responding to various information security events in a large and complex environment, as well as analyze, triage, and report on these incidents and investigations. The candidate must have knowledge of system security design, network/cloud security best practices and in-depth knowledge of systems security operations, threat actors frequently used attack vectors, and general user behavior analytics. This position will work closely with the threat hunting and intelligence team to execute strategic vision for the department and assist in maturing our overall IR plans and policies.
Responsibilities
Responsible for handling day-to-day operations to monitor, identify, triage and investigate security events from various Endpoint Detection and Response (EDR), Network and Cloud security tools; with the ability to detect anomalies, and report remediation actions in both our commercial and FedRAMP networks
Responsible for detecting and responding to security incidents, coordinating cross-functional teams to mitigate and eradicate threats
Responsible for triaging security incidents and conducting response actions to detect, contain and remediate identified security incidents
Analyze firewall logs, server, and application logs to investigate events and incidents for anomalous activity and produce reports of findings
Conduct reviews and analysis of proxy logs, Microsoft Windows and Active Directory logs, and malicious code to identify, contain, eradicate, and ensure recovery from incidents
Responsible for investigating security incidents reported by third parties or external security researchers
Determine root cause analysis and create post-mortem documentation for security incidents
Track security events and incidents in a SOAR tool
Develop and document threat driven response playbooks to support security incidents
Provide knowledge sharing, mentoring, and support of team members where applicable
Maintain current knowledge and understanding of the threat landscape and emerging security threats
Provide support as on-call personnel during security incidents
Responsible for working in a 24/7 environment to include rotating night and weekend shifts
Maintain a high level of confidentiality and Integrity
Minimum Qualifications
BS in Computer Science, Information Security, or equivalent professional experience
3+ years of cyber security experience in incident response
Technical depth in one or more specialties including: Malware analysis, Host analysis and Digital forensics
Strong understanding of Security Operations and Incident Response process and practices
Experience performing security monitoring, response capabilities, log analysis and forensic tools
Strong understanding of operating systems including Windows, Linux and OSX
Experience with SIEM, SOAR, EDR, Network, AWS, and Azure security tools
Experience with IR and Forensic investigations within Cloud environments such as AWS and Azure
Experience with one or more scripting languages (PowerShell, Python, Bash, etc.)
Excellent critical thinking and analytical skills, organizational skills, and the ability to work as part of a team
Excellent verbal and written communication skills
Ability to design playbooks for responding to security incidents
Ability to support off-hours, weekends, and holidays if needed in support of incident response
Preferred Qualifications
Advanced interpersonal skills to effectively promote ideas and collaboration at various levels of the organization
One or more security-related certifications from any of the following organizations: SANS - [GCIH, GCFE, GCFA], AWS, Azure Cloud security Certifications or equivalent are desired
#LI-POST
Learn More
About Autodesk
Welcome to Autodesk! Amazing things are created every day with our software – from the greenest buildings and cleanest cars to the smartest factories and biggest hit movies. We help innovators turn their ideas into reality, transforming not only how things are made, but what can be made.
We take great pride in our culture here at Autodesk – our Culture Code is at the core of everything we do. Our values and ways of working help our people thrive and realize their potential, which leads to even better outcomes for our customers.
When you’re an Autodesker, you can be your whole, authentic self and do meaningful work that helps build a better future for all. Ready to shape the world and your future? Join us!
Salary transparency
Salary is one part of Autodesk’s competitive compensation package. For Canada-BC based roles, we expect a starting base salary between $73,100 and $107,250. Offers are based on the candidate’s experience and geographic location, and may exceed this range. In addition to base salaries, we also have a significant emphasis on annual cash bonuses, commissions for sales roles, stock grants, and a comprehensive benefits package.Diversity & Belonging
We take pride in cultivating a culture of belonging and an equitable workplace where everyone can thrive. Learn more here: https://www.autodesk.com/company/diversity-and-belonging
Are you an existing contractor or consultant with Autodesk?
Please search for open jobs and apply internally (not on this external site).
Tags: Active Directory Analytics AWS Azure Bash Cloud Computer Science EDR FedRAMP Firewalls Forensics GCFA GCFE GCIH Incident response Linux Log analysis Malware Monitoring PowerShell Python SANS Scripting SIEM SOAR Windows
Perks/benefits: Competitive pay Team events Transparency
More jobs like this
Explore more InfoSec / Cybersecurity career opportunities
Find even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.
- Open Information Security Specialist jobs
- Open Senior Cyber Security Engineer jobs
- Open Ethical hacker / Pentester H/F jobs
- Open Information Systems Security Officer (ISSO) jobs
- Open Principal Security Engineer jobs
- Open Cyber Security Architect jobs
- Open Manager Pentest H/F jobs
- Open Product Security Engineer jobs
- Open Staff Security Engineer jobs
- Open Cyber Security Specialist jobs
- Open Cybersecurity Analyst jobs
- Open Senior Information Security Analyst jobs
- Open Chief Information Security Officer jobs
- Open Consultant infrastructure sécurité H/F jobs
- Open IT Security Analyst jobs
- Open Cybersecurity Consultant jobs
- Open Consultant SOC / CERT H/F jobs
- Open Senior Information Security Engineer jobs
- Open Security Specialist jobs
- Open Senior Penetration Tester jobs
- Open Senior Security Architect jobs
- Open Cybersecurity Specialist jobs
- Open Security Researcher jobs
- Open IT Security Engineer jobs
- Open Security Operations Analyst jobs
- Open CISM-related jobs
- Open Windows-related jobs
- Open Network security-related jobs
- Open ISO 27001-related jobs
- Open Pentesting-related jobs
- Open Application security-related jobs
- Open Agile-related jobs
- Open GCP-related jobs
- Open Vulnerability management-related jobs
- Open SaaS-related jobs
- Open CISA-related jobs
- Open Analytics-related jobs
- Open IAM-related jobs
- Open Threat intelligence-related jobs
- Open APIs-related jobs
- Open Security assessment-related jobs
- Open Java-related jobs
- Open Malware-related jobs
- Open DevOps-related jobs
- Open Security Clearance-related jobs
- Open IDS-related jobs
- Open Forensics-related jobs
- Open CEH-related jobs
- Open EDR-related jobs
- Open Kubernetes-related jobs