Information Security Analyst

This position is responsible for monitoring, detecting, analyzing and responding to security threats and incidents across our organization’s network and systems. The ideal candidate will have a strong understanding of security operations, threat intelligence, vulnerability management and incident response, along with experience working in a fast-paced Security team. This position is critical to maintaining and improving our organization’s security posture. 

Key Responsibilities

• Proactively perform security event monitoring and incident response for business systems, applications, and sites

• Follow established incident response procedures and take direction in a fast-paced environment

• Quickly respond to escalated security incident tickets to assess, contain, and eradicate threats

• Support the operation of Tenneco’s IT security infrastructure, services, and programs including Security Information and Event Management program (SIEM), Vulnerability Management program, intrusion detection and prevention, malware protection, and threat intelligence

• Participate in root cause analysis, make, and implement recommendations on improvements

• Proactively identify, track, and mitigate risk to IT systems and operations

• Recommend and implement improvements to security processes and services

• Support timely execution and delivery of security key performance metrics

• Interface with centralized and local IT Services to maintain and improve cyber security

• Support the security program strategy and stay current with evolving technologies and threats

• Participate in on-call rotation

What will make you successful

•  Bachelor’s degree in computer science, Information Security and Risk Management, Information Systems, Engineering, Business or related major or commensurate experience.

• Relevant certification including but not limited to: Azure Security Engineer, AWS Certified Security – Specialty, CompTIA Security+, CCNA,  BTL1, BTL2, CysA+, GCIA, GCFA

• Certified Incident Handler (GCIH) certification or equivalent preferred

• Minimum of 2-3 years of experience in a similar role or in Information Security executing Information Security Incident Response activities

• Able to quickly learn new technologies and maintain up-to-date knowledge of current security trends

• Hands-on experience in security systems, SIEM tools, intrusion detection systems, endpoint detection and response software, authentication systems, log management, and content filtering

• Thorough understanding of the latest security principles, techniques, and protocols

• Problem solving skills and ability to work under pressure

• Log analysis and security content development in SIEM solutions

• Deep understanding of cybersecurity kill chain and principles

• Work independently with little supervision

#LI-AG