Worldpay
Incident Responder IT Security Specialist
Worldpay, Atlanta, Georgia, United States, 30383
Job DescriptionAre you ready to write your next chapter?Make your mark at one of the biggest names in payments. With proven technology, we process the largest volume of payments in the world, driving the global economy every day. When you join Worldpay, you join a global community of experts and changemakers, working to reinvent an industry by constantly evolving how we work and making the way millions of people pay easier, every day.What makes a Worldpayer? It's simple: Think, Act, Win. We stay curious, always asking the right questions to be better every day, finding creative solutions to simplify the complex. We're dynamic, every Worldpayer is empowered to make the right decisions for their customers. And we're determined, always staying open - winning and failing as one.Are you ready to make your mark? Then you sound like a Worldpayer.About the role:As a
Cyber Incident Response Specialist
with Worldpay, your skills will be put to the test on the front lines of cyber-crime. Information security is at the heart of fintech and you'll help protect and secure highly-sensitive financial data for customers around the world. You will play a critical role in building a world-class security operations team: implementing technology and processes to identify and mitigate security incidents.The
ideal candidate
will have a proven track record as an Incident Responder, Threat Hunter, or SOC Engineer with a demonstrated ability to design and coordinate security event monitoring workflows and tooling effectively, deep dive into data from security telemetry, and prioritize controls and recommendations around information gaps.What you will be doing:Testing and providing feedback on how best to leverage and implement state-of-the-art security tooling including XDR, SOAR, SIEM, and more.Provide feedback on how to optimize Security Operations Center (SOC) procedures to ensure timely escalation, response, and resolution of security incidents.Utilizing security automation platforms (SOAR) and Security Information and Event Management (SIEM) tools to streamline security operations and enhance threat detection capabilities.Provide overwatch on security alerting and incidents to develop additional detective capabilities and refine automated workflows.Engage in threat hunting activities to proactively identify and neutralize advanced threats.Provide oversight and mentorship to SOC analysts and security engineers, fostering their professional development and enhancing their capabilities.Act as a consultant and subject matter expert as needed around incident response and remediation activities.Collaborate with cross-functional teams to develop and implement security best practices and protocols, including working with data science peers to provide overwatch capabilities for security operations teams, assisting with detection engineering activities, and participating in routine threat hunting projects.What you will need:Bachelor's degree in computer science/information systems or the equivalent combination of education, training, or work experience.
GSEC, GCIH, CISSP or other security or network certifications highly desired
.Typically requires five or more years of experience with:Demonstrated expertise in security operations including developing and implementing SOC escalation procedures and security event analysis.Strong proficiency with security automation platforms (SOAR) and SIEM/logging tools.Expertise with data analysis tools like Splunk or Jupiter Notebooks, and programming/scripting knowledge with Python, Powershell, or a relevant query language (SPL/MSSQL/KQL, etc.).Experience with Endpoint Detection and Response tooling.Familiarity with incident response methodologies and tools.Hands-on experience with network technologies (protocols, design concepts, access control).Knowledge of security technologies (encryption, data protection, design, privilege access, etc.).Knowledge of network design and engineering.Proficiency in time management, communications, decision making, presentation and organizational skills.Proficiency in planning, reporting, establishing goals and objectives, standards, priorities and schedules.Verbal and written communication skills to technical and non-technical audiences of various levels in the organization.Passion for cybersecurity with a willingness to partake in an on-call rotation schedule to provide full coverage for security escalations.Added bonus if you have:Led proof-of-concept projects or architecture bake-offs, identifying the pros and cons between security vendor product suites.Experience mapping threat actor capabilities, threat modeling, and adversarial focused frameworks such as MITRE ATT&CK.Detection engineering and sensor tuning experience.Understanding of a broad spectrum of endpoint and network protection tools (application whitelisting, DLP, phishing protection, IPS, NDR, cloud monitoring).Familiarity with network and host forensics.Basic knowledge of development lifecycle and technology stacks.Worldpay perks - what we'll bring for you:We know it's bigger than just your career. It's your life, and your world. That's why we offer global benefits and programs to support you at every stage. Here's a taste of what you can expect.A competitive salary and benefits.Time to support charities and give back to your community.Parental leave policy.Global recognition platform.Virgin Pulse access.Global employee assistance program.What makes a Worldpayer:At Worldpay, we take our Values seriously, and we live them every day. Think like a customer, Act like an owner, and Win as a team.Does this sound like you? Then you sound like a Worldpayer.Apply now to write the next chapter in your career. We can't wait to hear from you.To find out more about working with us, find us on LinkedIn.#LI-JK1
#J-18808-Ljbffr
Cyber Incident Response Specialist
with Worldpay, your skills will be put to the test on the front lines of cyber-crime. Information security is at the heart of fintech and you'll help protect and secure highly-sensitive financial data for customers around the world. You will play a critical role in building a world-class security operations team: implementing technology and processes to identify and mitigate security incidents.The
ideal candidate
will have a proven track record as an Incident Responder, Threat Hunter, or SOC Engineer with a demonstrated ability to design and coordinate security event monitoring workflows and tooling effectively, deep dive into data from security telemetry, and prioritize controls and recommendations around information gaps.What you will be doing:Testing and providing feedback on how best to leverage and implement state-of-the-art security tooling including XDR, SOAR, SIEM, and more.Provide feedback on how to optimize Security Operations Center (SOC) procedures to ensure timely escalation, response, and resolution of security incidents.Utilizing security automation platforms (SOAR) and Security Information and Event Management (SIEM) tools to streamline security operations and enhance threat detection capabilities.Provide overwatch on security alerting and incidents to develop additional detective capabilities and refine automated workflows.Engage in threat hunting activities to proactively identify and neutralize advanced threats.Provide oversight and mentorship to SOC analysts and security engineers, fostering their professional development and enhancing their capabilities.Act as a consultant and subject matter expert as needed around incident response and remediation activities.Collaborate with cross-functional teams to develop and implement security best practices and protocols, including working with data science peers to provide overwatch capabilities for security operations teams, assisting with detection engineering activities, and participating in routine threat hunting projects.What you will need:Bachelor's degree in computer science/information systems or the equivalent combination of education, training, or work experience.
GSEC, GCIH, CISSP or other security or network certifications highly desired
.Typically requires five or more years of experience with:Demonstrated expertise in security operations including developing and implementing SOC escalation procedures and security event analysis.Strong proficiency with security automation platforms (SOAR) and SIEM/logging tools.Expertise with data analysis tools like Splunk or Jupiter Notebooks, and programming/scripting knowledge with Python, Powershell, or a relevant query language (SPL/MSSQL/KQL, etc.).Experience with Endpoint Detection and Response tooling.Familiarity with incident response methodologies and tools.Hands-on experience with network technologies (protocols, design concepts, access control).Knowledge of security technologies (encryption, data protection, design, privilege access, etc.).Knowledge of network design and engineering.Proficiency in time management, communications, decision making, presentation and organizational skills.Proficiency in planning, reporting, establishing goals and objectives, standards, priorities and schedules.Verbal and written communication skills to technical and non-technical audiences of various levels in the organization.Passion for cybersecurity with a willingness to partake in an on-call rotation schedule to provide full coverage for security escalations.Added bonus if you have:Led proof-of-concept projects or architecture bake-offs, identifying the pros and cons between security vendor product suites.Experience mapping threat actor capabilities, threat modeling, and adversarial focused frameworks such as MITRE ATT&CK.Detection engineering and sensor tuning experience.Understanding of a broad spectrum of endpoint and network protection tools (application whitelisting, DLP, phishing protection, IPS, NDR, cloud monitoring).Familiarity with network and host forensics.Basic knowledge of development lifecycle and technology stacks.Worldpay perks - what we'll bring for you:We know it's bigger than just your career. It's your life, and your world. That's why we offer global benefits and programs to support you at every stage. Here's a taste of what you can expect.A competitive salary and benefits.Time to support charities and give back to your community.Parental leave policy.Global recognition platform.Virgin Pulse access.Global employee assistance program.What makes a Worldpayer:At Worldpay, we take our Values seriously, and we live them every day. Think like a customer, Act like an owner, and Win as a team.Does this sound like you? Then you sound like a Worldpayer.Apply now to write the next chapter in your career. We can't wait to hear from you.To find out more about working with us, find us on LinkedIn.#LI-JK1
#J-18808-Ljbffr