Cyber Security Analyst
As Discovery Communications’ portfolio continues to grow – around the world and across platforms – the Global Technology & Operations team is building media technology and IT systems that meet the world class standard for which Discovery is known. GT&O builds, implements and maintains the business systems and technology that are critical for delivering Discovery’s products, while articulating the long-term technology strategy that will enable Discovery’s growing pay-TV, digital terrestrial, free-to-air and online services to reach more audiences on more platforms.
From Amsterdam to Singapore and from satellite and broadcast operations to SAP, we are driving Discovery forward on the leading edge of technology.
Within our Information Security team, there has never been a busier or more urgent time to obtain the best talent we can for a function so critical to Discovery Communications. In light of the constant threats and attacks occurring in companies across the globe, and across all industries, the Information Security Team at Discovery is a growing group of cyber security professionals, that are using the latest tools and resources to protect the assets from our internal infrastructure to the shows we broadcast across the globe on Discovery Channel, Animal Planet, Discovery ID, TLC, EuroSport and more. From the US to Singapore, India to LA, we are tasked with protecting, training, and implementing the best of the best in tools, resources, monitoring, threat detection, and more.
This key Analyst role on the Discovery Communications Information Security team, will perform cyber security monitoring and detection analysis and Computer Security Incident Response activities for our global organization, and coordinate with other company wide IT teams to record and report incidents. This role will require one to be capable of working with a security team of varying experience levels in order to effectively monitor security incidents as well as make recommendations to improve the security posture of a global organization.
1. Monitor and analyze Intrusion Detection Systems (IDS), Anomaly Detection Systems (ADS), Splunk/ArcSight/QRadar (SIEM) to identify security issues for remediation.
2. Create, modify, and update IDS/IPS and Security Information Management (SIEM) tool rules
3. Proactively recognizes potential successful, and unsuccessful intrusion attempts and compromises thorough reviews and analyses of relevant event detail and summary information
4. Evaluate/deconstruct malware (e.g. obfuscated code) through open-source and vendor provided tools
5. Tasks other analysts to analyze the IDS and remediate security issues found
6. Communicates alerts to IT groups regarding intrusions and compromises to their network infrastructure, applications and operating systems
7. Assists with implementation of counter-measures or mitigating controls.
Bachelor Degree from an accredited university in business or IT related discipline (may substitute with a minimum of 12 years of IT engineering and supervision experience)
5+ years of progressive experience with increasing responsibilities within a Security Operations environment
8+ years of IT engineering work experience
5+ years of Enterprise Architecture experience
Prior experience successfully providing the full range of IT cyber security tasks. Strong working knowledge with industry IT security tools. Experience with FireEye, RSAM, EnCase, FireEye, Yara, OllyDbg, IDA Pro a plus.
Must have a strong foundation of Network and Security skills, fundamental knowledge of Windows, Linux and Cisco operating systems, networking protocols and network traffic analysis, and information security
Subject Matter Expert-level skills in Incident Response and IDS Monitoring, Forensics, Malware Analysis
Independent tasking and project completion with little supervision is a must
This position requires a comprehensive knowledge and mastery of this field and the ability to complete difficult and complex assignments on time within a fast paced environment.
Excellent analytical and problem solving skills as well as interpersonal skills to interact with users, team members and senior management;
Investigates, interprets, and responds to technical and/or complex IT security data. Demonstrated ability to work with matrixed resources in a team environment. Possesses strong organizational, time management and diplomacy skills.
Engineering related certifications, extensive experience with IT security tools, working technical knowledge of network, server, storage and desktop hardware and software
Desirable certifications include CISSP, GREM, GCIH, GCIA, CEH, CISM, GCED, GCFA, OSCP
Must have legal right to work in the United States
Back to top