Paranoids, Weekend Night Shift - Forensic and Incident Response Operations (FIRE) Analyst
US - United States of America
Yahoo
Yahoo is a global media and tech company connecting people to their passions. We reach almost a billion people worldwide, bringing them closer to what they love.About Our Team
When you impact millions of people every day, you become a large target for adversaries of all types within all layers of the stack. Our job is to keep our users safe and make Yahoo one of the safest places on the Internet.
We are the information security team at Yahoo; known as "The Paranoids".
As part of the Paranoids Forensics and Incident Response Operations Team (FIRE), we protect Yahoo and its users from dedicated adversaries, working on the front lines monitoring for, hunting for, and responding to threats, we ensure that our users and company are kept safe.
You are a highly motivated security analyst and will use Yahoo internal tools and other systems to detect and respond to security events. You are interested in protecting sensitive corporate and user data from unauthorized access at Internet scale and applying advanced technical, behavioral, and investigative solutions to find evil, ensuring that Yahoo data remains secure.
WEEKEND NIGHT SHIFT
9 PM EST to 9 AM EST Friday to Sunday
During your time here we will:
Give you the opportunity to take ownership of key processes supporting the mission of finding evil
Enable you to stop advanced attackers and protect our users
Provide you with a positive work life balance
Encourage you to follow the investigation through till the end
Challenge you to push the bounds of our security program and your own talents
Responsibilities
Monitor and analyze security events from networks, applications, hosts, and databases
Perform proactive research and identification of security anomalies
Work with the team to develop and deliver table-top exercises
Participate in regular threat hunting exercises
Assess security incidents and assist Yahoo business units to remediate issues
Work with a variety of security technologies including IDS, firewalls, EDR, etc
Contribute to the overall security posture of Yahoo
Work to tune signatures and develop new use cases for finding badness
Evaluate new log sources for security detection value and develop potential use cases
Continue to focus on process improvement including developing playbooks
Work on special projects as needed
Participate in a 24x7 on call rotation
Requirements
Bachelor's degree, or equivalent work experience.
Background in security fundamentals including network and host forensics, and log analysis
A passion for the field of information security and incident response.
Understanding of common network services (web, mail, FTP, etc), network vulnerabilities, and attack patterns
Functional experience with Windows, Mac and Linux systems and services
An ability to work independently and communicate via technology
Excellent written and verbal communication skills along with the ability to communicate complex, technical information to both technical and non-technical audiences
Desired
Experience with Splunk Security Information and Event Monitoring (SIEM) solution
Experience in shell scripting, Python, or similar tool and automation languages
#L1-SO
Yahoo is proud to be an equal opportunity workplace. All qualified applicants will receive consideration for employment without regard to, and will not be discriminated against based on age, race, gender, color, religion, national origin, sexual orientation, gender identity, veteran status, disability or any other protected category. Yahoo is dedicated to providing an accessible environment for all candidates during the application process and for employees during their employment. If you need accessibility assistance and/or a reasonable accommodation due to a disability, please submit a request via the Accommodation Request Form (www.yahooinc.com/careers/contact-us.html) or call 408-336-1409. Requests and calls received for non-disability related issues, such as following up on an application, will not receive a response.
At Yahoo, we know that diversity makes us stronger. We are committed to a collaborative, inclusive environment that encourages authenticity and fosters a sense of belonging. We strive for everyone to feel valued, connected, and empowered to reach their potential and contribute their best. Check out our diversity and inclusion (www.yahooinc.com/diversity/) page to learn more.
The compensation for this position ranges from $67,500.00 - $140,625.00/yr and will vary depending on factors such as your location, skills and experience. The compensation package may also include incentive compensation opportunities in the form of discretionary annual bonus or commissions, in addition to equity incentives. Yahoo provides industry-leading benefits including healthcare, 401K savings plan, company holidays, vacation, sick time, parental leave and an employee assistance program. Eligibility requirements apply.Yahoo has a high degree of flexibility around employee location and hybrid working. In fact, our flexible-hybrid approach to work is one of the things our employees rave about. Most roles don’t require specific regular patterns of in-person office attendance. If you join Yahoo, you may be asked to attend (or travel to attend) on-site work sessions, team-building, or other in-person events. When these occur, you’ll be given notice to make arrangements.
If you’re curious about how this factors into this role, please discuss with the recruiter.
Currently work for Yahoo? Please apply on our internal career site.
Tags: Automation EDR Firewalls Forensics IDS Incident response Linux Log analysis Monitoring Python Scripting SIEM Splunk Vulnerabilities Windows
Perks/benefits: 401(k) matching Career development Equity Flex hours Flex vacation Parental leave Salary bonus Team events
More jobs like this
Explore more InfoSec / Cybersecurity career opportunities
Find even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.
- Open Senior Security Analyst jobs
- Open Ethical hacker / Pentester H/F jobs
- Open Information Systems Security Officer (ISSO) jobs
- Open Senior Cyber Security Engineer jobs
- Open Manager Pentest H/F jobs
- Open Principal Security Engineer jobs
- Open Cyber Security Architect jobs
- Open Product Security Engineer jobs
- Open Cyber Security Specialist jobs
- Open Staff Security Engineer jobs
- Open Cybersecurity Analyst jobs
- Open Chief Information Security Officer jobs
- Open Senior Information Security Analyst jobs
- Open Consultant infrastructure sécurité H/F jobs
- Open IT Security Analyst jobs
- Open Cybersecurity Consultant jobs
- Open Consultant SOC / CERT H/F jobs
- Open Senior Information Security Engineer jobs
- Open Senior Penetration Tester jobs
- Open Security Specialist jobs
- Open Security Researcher jobs
- Open Cybersecurity Specialist jobs
- Open Senior Security Architect jobs
- Open IT Security Engineer jobs
- Open Security Operations Analyst jobs
- Open Windows-related jobs
- Open CISM-related jobs
- Open Network security-related jobs
- Open ISO 27001-related jobs
- Open Pentesting-related jobs
- Open Application security-related jobs
- Open Agile-related jobs
- Open GCP-related jobs
- Open Vulnerability management-related jobs
- Open CISA-related jobs
- Open IAM-related jobs
- Open Analytics-related jobs
- Open Threat intelligence-related jobs
- Open SaaS-related jobs
- Open APIs-related jobs
- Open Security assessment-related jobs
- Open Java-related jobs
- Open Malware-related jobs
- Open Forensics-related jobs
- Open DevOps-related jobs
- Open Security Clearance-related jobs
- Open IDS-related jobs
- Open CEH-related jobs
- Open Kubernetes-related jobs
- Open EDR-related jobs