Lumen Incident Response Engineer - Application Security - Remote in Boston, Massachusetts
Lumen is guided by our belief that humanity is at its best when technology advances the way we live and work. With 450,000 route fiber miles serving customers in more than 60 countries, we deliver the fastest, most secure global platform for applications and data to help businesses, government and communities deliver amazing experiences. Learn more about Lumen’s network, edge cloud, security and communication and collaboration solutions and our purpose to further human progress through technology at news.lumen.com, LinkedIn: /lumentechnologies, Twitter: @lumentechco, Facebook: /lumentechnologies, Instagram: @lumentechnologies and YouTube: /lumentechnologies.
Cybersecurity Incident Response Team (CIRT) Engineers are expected to respond to and mitigate/remediate cybersecurity alerts from Lumen assets. CIRT Engineers research and recommend preventative measures in conjunction with managing reactive alerts. In addition, CIRT Engineers are responsible to evaluate current capabilities and predict future needs, then work with internal stakeholders, vendors and peers to anticipate, define, and pursue these capabilities
The Main Responsibilities
Respond to, remediate, and document security incidents involving Lumen computing infrastructure reported by but not limited to: Automated SIEM alerts, tickets, emails, or phone calls.
Improve Application Security by identifying applications with logs that need monitoring and alerting created or improved.
Actively hunt the enterprise for insecure, suspicious, or malicious activity.
Review and revise automated alert data as needed.
Discover, update and maintain automated alerts and response guides for accuracy.
Work security projects dedicated to improving Cyber Defense Team or Lumen's security posture.
Research and understand initial threat vectors and create protection mechanisms to prevent threat recurrences.
Participate in an on-call shift rotation.
Demonstrate effective communication skills, both verbal and written.
What We Look For in a Candidate
Undergraduate degree in Computer Science Engineering, related field, or equivalent experience.
5+ years of experience in incident response, computer forensics security, risk assessments, application security or network security.
Detailed understanding of industry standard incident response concepts and frameworks (NIST Incident Handling, PICERL, Cyber Kill Chain, etc.)
Excellent understanding of common computing platforms, including Windows Client, Windows Server, Macintosh, Linux, and networking appliances.
Strong work ethic, demonstrated self-starter, ability to work in a fast paced, team-oriented environment with excellent verbal and written communication skills.
Candidate must possess, or be willing to pursue, applicable professional/technical certifications, such as Security +, C|EH, OSCP, GCIH, CISSP, GPEN, GWAPT, GISEC, CISM or CISA.
Able to obtain a GSA Public Trust suitability.
5+ years of dedicated experience in incident response, malware reversing, or security research.
Proficient with regular expressions, PERL, and/or XML constructs.
Hands on experience using commercial Security Incident and Event Management (SIEM), “Next-generation” firewalls, web-content filtering systems, and/or Intrusion Prevention Systems.
Professional/technical certifications, such as Certified Information Systems Security Professional (CISSP), Security+, Microsoft Certified IT Professional, Linux Professional Institute Certifications, GIAC Certified Incident Handler (GCIH), or equivalent System Administration related certifications.
Experience with large enterprise data centers and/or networks and applications.
Experience reverse engineering malware and malware analysis.
Experience with Cyber/Digital Forensics
Requisition #: 251153
We are committed to providing equal employment opportunities to all persons regardless of race, color, ancestry, citizenship, national origin, religion, veteran status, disability, genetic characteristic or information, age, gender, sexual orientation, gender identity, marital status, family status, pregnancy, or other legally protected status (collectively, “protected statuses”). We do not tolerate unlawful discrimination in any employment decisions, including recruiting, hiring, compensation, promotion, benefits, discipline, termination, job assignments or training.
The above job definition information has been designed to indicate the general nature and level of work performed by employees within this classification. It is not designed to contain or be interpreted as a comprehensive inventory of all duties, responsibilities, and qualifications required of employees assigned to this job. Job duties and responsibilities are subject to change based on changing business needs and conditions.
Salary Min :
Salary Max :
This information reflects the anticipated base salary range for this position based on current national data. Minimums and maximums may vary based on location. Individual pay is based on skills, experience and other relevant factors.
This position is eligible for either short-term incentives or sales compensation. Director and VP positions also are eligible for long-term incentive. To learn more about our bonus structure, you can view additional information here. (https://jobs.lumen.com/global/en/compensation-information) We're able to answer any additional questions you may have as you move through the selection process.
As part of our comprehensive benefits package, Lumen offers a broad range of Health, Life, Voluntary Lifestyle and other benefits and perks that enhance your physical, mental, emotional and financial wellbeing. You can learn more by clicking here. (https://centurylinkbenefits.com)
Note: For union-represented postings, wage rates and ranges are governed by applicable collective bargaining agreement provisions.
Salary Min :
Salary Max :
This information reflects the base salary pay range for this job based on current national market data. Ranges may vary based on the job's location. We offer competitive pay that varies based on individual experience, qualifications and other relevant factors. We encourage you to apply to positions that you are interested in and for which you believe you are qualified. To learn more, you are welcome to discuss with us as you move through the selection process.
- Lumen Jobs