Senior Incident Response Analyst

It's fun to work in a company where people truly BELIEVE in what they're doing!We're committed to bringing passion and customer focus to the business.Corporate Overview Proofpoint is a leading cybersecurity company protecting organizations’ greatest assets and biggest risks: vulnerabilities in people. With an integrated suite of cloud-based solutions, Proofpoint helps companies around the world stop targeted threats, safeguard their data, and make their users more resilient against cyber attacks. Leading organizations of all sizes, including more than half of the Fortune 1000, rely on Proofpoint for people-centric security and compliance solutions mitigating their most critical risks across email, the cloud, social media, and the web.We are singularly devoted to helping our customers protect their greatest assets and biggest security risk: their people. That’s why we’re a leader in next-generation cybersecurity.The Role We are currently hiring an Incident Response Analyst interested in joining our Global Information Security team – triaging, investigating, and responding to internal cyber threats and incidents while helping to design and build increasingly sophisticated capabilities for threat detection.Working in collaboration with other members of the Operations, Engineering, Product Management, Legal, Customer Support, Compliance, and Security teams you will be a member of a small, nimble security incident response team that is improving productivity and security posture across our corporate and production systems.Technologies you may work with include:Endpoint Detection and Response tools (Crowdstrike, FireEye, Cybereason, or similar)Security Incident and Event Management (Splunk ES, ThreatStack, ArcSight, IBM Qradar, ELK, or similar)Network Intrusion Detection Systems (Honeypots, Suricata, Security Onion, Snort, or similar)Digital Forensics and Incident Response (DFIR) tools (e.g. GRR, SIFT, Osquery, sysmon, Tripwire, or similar)Operating systems (Windows, Linux, macOS)Public cloud security controls (e.g. AWS, Azure, GCP)Virtualization and Containers (VMware, Docker, Kubernetes, or similar)Your day-to-dayManaging incoming queues of threat reports or detectionsTriaging and prioritizing competing incidents to maintain Service Level Agreements (SLA)Managing investigations including organizing unstructured work and engaging resources across the companyManaging urgency and visibility to ensure timely response by all involved partiesOwning an incident for it’s full lifecycle, including post mortem reviews and follow up actionsCommunication and coordination with Operations, Engineering, Product Management, Legal, Customer Support, Compliance, and Security teamsWhat you bring to the teamSecurity Incident and Event Management experience in a team environmentAbility to own the full lifecycle of an incident and collaborate across the company to drive it to resolutionExperienced with a majority of the technologies listed above or equivalentsEffective and efficient threat triaging and investigative skillsExcellent verbal and written communication skills including a focus on providing continuous, proactive communications to management, peers, and stakeholders while working on incidentsBSs in Computer Science or relevant experience in a similar roleWhy ProofpointProtecting people is at the heart of our award-winning cybersecurity solutions, and the people who work here are the key to our success.  We’re a customer-focused and driven-to-win organisation with leading-edge products. We are an inclusive, diverse, multinational company that believes in culture fit, but more importantly ‘culture-add’, and we strongly encourage people from all walks of life to apply.  We believe in hiring the best and the brightest to help cultivate our culture of collaboration and appreciation. Apply today and explore your future at Proofpoint! #LifeAtProofpointIf you like wild growth and working with happy, enthusiastic over-achievers, you'll enjoy your career with us!