Incident Response Analyst

Job Requisition ID #25WD90131Position Overview The Incident Response Analyst is responsible for monitoring, identifying, assessing, containing, and responding to various information security events in a large and complex environment, as well as analyse, triage, and report on these incidents and investigations. The candidate must have knowledge of system security design, network/cloud security best practices and in-depth knowledge of systems security operations, threat actors frequently used attack vectors, and general user behaviour analytics. The candidate will be part of an established security team and work closely with teams across the company in remediating security issues and driving Incident Response. The candidate should have a strong passion for security and growth and be willing to accept challenging projects and incidents.Responsibilities:Responsible for handling day-to day operations to monitor, identity, triage and investigate security events from various Endpoint (EDR), Network and Cloud security tools and detect anomalies, and report remediation actionsAnalyze firewall logs, server, and application logs to investigate events and incidents for anomalous activity and produce reports of findingsConduct reviews and analysis of proxy logs, Microsoft Windows and Active Directory logs, and malicious code to identify, contain, eradicate, and ensure recovery from incidentsHelp create and maintain process tools and documentationPerform all stage of incident response from detection to postmortemCollaborate with stakeholders in building and improving our Security Orchestration PlatformClearly document notes for incidents in our case management solutionPerform basic forensics and malware analysis based on our playbooks and proceduresResponsible for working in a 24/7 environment including night shifts and the shifts are decided based on the business requirementMaintain a high level of confidentiality and IntegrityMinimum Qualifications:BS in Computer Science, Information Security, or equivalent professional experience2+ years of cyber security experience in incident responseTechnical depth in one or more specialties including: Malware analysis, Host analysis and Digital forensicsStrong understanding of Security Operations and Incident Response process and practicesExperience performing security monitoring, response capabilities, log analysis and forensic toolsStrong understanding of operating systems including Windows, Linux and OSXExperience with SIEM, SOAR, EDR, Network, AWS, and Azure security toolsExcellent critical thinking and analytical skills, organizational skills, and the ability to work as part of a teamExcellent verbal and written communication skillsAbility to design playbooks for responding to security incidentsAbility to support off-hours, weekends, and holidays if needed in support of incident responsePreferred Qualifications:Advanced interpersonal skills to effectively promote ideas and collaboration at various levels of the organizationOne or more security-related certifications from any of the following organizations: GCIH, GCFE, GCFA, AWS, Azure Cloud security Certifications or equivalent is desired#LI-PJ1 Learn MoreAbout AutodeskWelcome to Autodesk! Amazing things are created every day with our software – from the greenest buildings and cleanest cars to the smartest factories and biggest hit movies. We help innovators turn their ideas into reality, transforming not only how things are made, but what can be made.We take great pride in our culture here at Autodesk – it’s at the core of everything we do. Our culture guides the way we work and treat each other, informs how we connect with customers and partners, and defines how we show up in the world.When you’re an Autodesker, you can do meaningful work that helps build a better world designed and made for all. Ready to shape the world and your future? Join us!Salary transparencySalary is one part of Autodesk’s competitive compensation package. Offers are based on the candidate’s experience and geographic location. In addition to base salaries, our compensation package may include annual cash bonuses, commissions for sales roles, stock grants, and a comprehensive benefits package.Diversity & BelongingWe take pride in cultivating a culture of belonging where everyone can thrive. Learn more here: https://www.autodesk.com/company/diversity-and-belongingAre you an existing contractor or consultant with Autodesk? Please search for open jobs and apply internally (not on this external site).