Arrow Electronics Incident Response Security Analyst in Centennial, Colorado
Incident Response Security Analyst
Part of Arrow Electronics Global Enterprise Services Team, the Incident Response Data Analyst will generally assist with service delivery by identifying, minimizing, and monitoring attack surfaces through vulnerability management, patch management and security monitoring services. Ideal candidates can identify key data points on systems which may be indicators of an attack. The analyst will be primary for eDiscovery activities around data preservation management, data collection and eDiscovery data extraction, providing direct support to litigation. The analyst must have a high attention to detail, be very flexible, and have the ability and desire to learn new technical/eDiscovery tools and procedures. The analyst will also serve as a key role in the Incident Response forensics and examination programs.
Work as a security consultant with team members and clients.
Apply and execute standard information systems theories, concepts and techniques and assist in the development of standards and procedures.
Incident responder who conducts forensics examination of digital media, memory, malware, packet capture and logs AND can develop the tools necessary to perform cutting edge analysis.
This person should have the skills to conduct the analysis when needed, but will primarily be focused on solving new problems and implementing research techniques.
Troubleshoot SIEM data collection, notification tuning and alerting.
Prepare and review reports that promote constant security enhancements.
Educate and influence system stakeholders on security best practices.
Perform technical/eDiscovery work utilizing defined procedures and tools.
Identify data custodian user IDs and data store locations.
Manage the collection of data from data custodians.
Communicate with data custodians and requesters as necessary.
Collaborate with outside counsel, external vendors, and/or other internal IT groups.
Define solutions to exceptions that occur during the performance of technical/eDiscovery work.
Utilize IT skills and experience to define potential solutions to technical/eDiscovery exceptions.
Communicate potential technical/eDiscovery solutions to eDiscovery management, requesters, and/or other IT groups.
Perform audits on technical/eDiscovery work.
Responsible for compliance with applicable state, secretariat and agency policies, procedures and laws.
Opportunities may be available for additional responsibilities, including task leadership.
Minimum 2 years of verifiable hands-on eDiscovery experience
Minimum 4 years of Information Security experience
Incident Response experience
Forensic examination experience
Solid background in network and systems administration as they relate to security best-practices
Familiarity with troubleshooting network communication and system configuration issues
Comprehension of top security threats (OWASP Top 10, SANS 25, NVD, etc.) and their remediation techniques
Familiarity with tools such as nmap, wireshark, psexec, nessus or similar solutions
Comfortable working with command-line interfaces and with cloud environments such as AWS and Azure
Operational experience with the following preferred: Firewalls, Vulnerability scanners, Intrusion Detection/Prevention systems, End Point Protection Systems, SIEM Log Management Systems
Working knowledge of Boolean expressions
Working knowledge of the Microsoft Keyword Query Language Structure
Experience working with advanced eDiscovery tools such as Security&Compliance Center for Office 365, Exchange 2013 eDiscovery component, SharePoint 2013 eDiscovery component
Working knowledge of the Electronic Discovery Reference Model (EDRM)
Ability to meet deadlines and Service Level Agreements (SLA's) while performing activities in a time critical, highly confidential process
Working knowledge of software development and or scripting languages such as PERL, Python, Ruby, C# and/or PowerShell is a plus
Working knowledge of regular expressions (regex) is a plus
Demonstrated experience interacting and communicating with legal department staff
High level of discretion in dealing with sensitive and confidential information
Strong analytical and verbal skills
Non-Customer Facing/Supplier Facing
Most people live in the present. But a handful of us live in a world that doesn’t exist yet — the world of Five Years Out. Five Years Out is the tangible future. And it’s a way of thinking at Arrow that serves as a springboard for innovators, helping them see what’s coming and stay ahead of what’s ahead.
We are much more than products and services. We’re a community of designers, engineers, builders and visionaries who navigate the path between possibility and practicality, across the complete lifecycle of electronics, in some of the fastest-growing commercial and industrial markets on the planet.
The work we do is everywhere, from things you’ve never seen to things you can’t live without. A Fortune 119 company with more than 18,700 employees in over 90 countries, and 2016 sales of $23.8 billion, we guide innovation forward for the world’s leading technologies used in homes, businesses and daily life. If it takes a charge, chances are we helped design it, build it and get it to market.
Are you Five Years Out? Then chances are, you’ll enjoy working with us.
Arrow is an equal opportunity employer. It does not discriminate based upon race, national origin, religion, gender, sexual orientation, gender identity, age, disability, genetic information, protected veteran status or any other characteristic protected by law. Arrow will make reasonable accommodations that enable qualified individuals to perform the essential functions of their jobs so long as the accommodation does not create an undue hardship.