This is a Hybrid Role located in our Philadelphia Tech Hub. Must be able to work in Philadelphia multiple times per week.
Are you considering a new role in Cyber Security and want to work in a company that is helping to change the world? Consider joining an organization serving the global scientific research community, supporting the brightest minds on the planet.
Are you a collaborative Incident Response Engineer looking to work for a mission driven global organization?
About the role, Elsevier is expanding its Global InfoSec Security Incident Response team. As a Security Incident Response Engineer, you will play a crucial role in our internal security support team, assisting with incident response investigations.
This team is entrusted with analyzing, triaging, scoping, containing, and providing guidance for remediation, as well as determining the root cause of security incidents. This team also is empowered by collecting and analyzing security incident-related data to identify indicators of attack and compromise.
Responsibilities
- Assisting in scoping security incidents and identifying indicators of attack and compromise.
- Analyzing incident data from threat analytics tools.
- Communicating recommendations and guidance based on security incident analysis.
- Coordinating responses to security incidents with other security and consulting teams.
- Developing, documenting, and implementing runbooks, capabilities, and techniques for Incident Response.
- Performing security triage and analysis on endpoint, server, and network infrastructure.
- Conducting activities necessary for immediate containment and short-term resolution of incidents.
- Maintaining current knowledge of the threat landscape, emerging security threats, and vulnerabilities.
- Investigating the root cause of complex security incidents.
- Maintaining a high level of confidentiality.
Requirements
- Possess experience in cybersecurity incident response or related fields.
- Proven ability to analyze, triage, scope, contain, and remediate security incidents.
- Have current and extensive knowledge of security technologies, tools, and processes.
- Experience with major cloud providers, including cloud security, networking, and multi-cloud or hybrid deployments.
- Have current skills in automation using PowerShell, Python, Java, or similar languages.
- Experience in Linux and/or Mac administration. Experience in Network Security Administration or Systems Administration.
- Experience supporting large, complex, and geographically distributed enterprise environments.
Preferred certifications: CISSP, CISM, SANS, GIAC, ethical hacking/penetration tester, or security risk assessment.
Elsevier employs 10,000 people worldwide, including over 2,500 technologists. We have supported the work of our research and health partners for more than 140 years. Growing from our roots in publishing, we offer knowledge and valuable analytics that help our users make breakthroughs and drive societal progress.
