Logo
Chick-fil-A

Cybersecurity Analyst III Job at Chick-fil-A in Atlanta

Chick-fil-A, Atlanta, GA, United States


Overview:

Welcome to the Cybersecurity Incident Response & Operations team (CSIRT) at Chick-fil-A. We are a dedicated group focused on identifying and responding to cyber threats against our organization. As a Cybersecurity Analyst III, you will apply your technical experience to help your peers on the Cybersecurity team identify and build improvements to incident response and security operations, automated workflows, and detection controls. You will respond to threats that have been identified by our partners or internal detection controls. Through your experience responding to cyber threats, you will help identify ways to improve the security posture of Chick-fil-A.

Our Flexible Future model offers a healthy mix of working in person and virtually, strengthening key elements of the Chick-fil-A culture by fostering collaboration and community.

Responsibilities:
  • Triage and respond to security events and incidents from various sources, primarily coordinating with your peers through our SOAR platform.
  • Partner with groups outside of Cybersecurity on triage and response efforts as needed for security events and incidents.
  • Collaborate with external security partners on detection and response to cyber threats.
  • Communicate incident response findings to internal and external parties to help improve our security posture.
  • Contribute to the maintenance of a SIEM solution through defect fixes, content updates, and new use-case development.
  • Contribute to the maintenance of a SOAR solution through content updates and new use-case development.
  • Contribute to the maintenance of anti-phishing preventative platforms through new detection and triage rule development.
  • Identify and propose new technologies, methodologies, and/or approaches to detecting malicious activity.
  • Research and assess new techniques and technologies for improving our security posture, response to security events, and efficacy of detection controls.
Minimum Qualifications:
  • Strong understanding of cybersecurity principles, practices, and technologies.
  • Knowledge of networking protocols, operating systems, and cloud environments.
  • Familiarity with programming languages like Python, PowerShell, or scripting for automation.
  • Ability to analyze security events, incidents, and trends to identify threats and vulnerabilities.
  • Strong problem-solving skills to investigate and resolve complex cybersecurity issues.
  • Aptitude for researching and staying updated on the latest cybersecurity threats and trends.
  • Strong communication skills to articulate technical concepts to non-technical stakeholders and present findings to business units.
Preferred Qualifications:
  • Proficiency with security tools including SIEM (Security Information and Event Management), SOAR (Security Orchestration, Automation, and Response), and anti-phishing platforms.
  • Experience in threat hunting, incident response, and forensic analysis.
  • OSCP, GSEC, GCED, GCIH, CISSP, GMON


Minimum Years of Experience:
1

Required Level of Education:
High School

Preferred Level of Education:
Bachelor's Degree