Analyst, Information Security (CSOC) - Remote

at  XPO

WHAT YOU’LL NEED TO SUCCEED AS AN ANALYST, INFORMATION SECURITY AT XPO

Minimum qualifications:

• Bachelor’s degree or equivalent related work or military experience
• 1 year of Cyber Security Experience
• Data analysis, documentation and reporting experience

Preferred qualifications:

• Security+, GISP or other industry-relevant certification(s)
• Experience in creating process and procedure documentation for a SOC operation
• Experience with ServiceNow and JIRA
• Experience using a Kanban-based project management model
• Experience building workflows and managing cases within a SOAR platform
• Knowledge of SIEM technology with experience working with Google Chronicle
• Familiarity with intrusion detection methodologies and techniques for
• detecting host and network-based intrusions
• incident response and handling methodologies
• computer networking concepts and protocols
• industry-standard and organizationally accepted analysis principles and methods
• network security methodologies
• Knowledge of the corporate cybersecurity threat landscape, cyber threats and vulnerabilities, system and application security threats and vulnerabilities and tactics and targets of Nation State actors and APTs
• Familiarity with Cloud structure and security monitoring capabilities GCP, MCAS and O365
• Knowledge of fundamental SOC performance metrics, penetration testing principles, tools and techniques and network traffic analysis methods

ABOUT XPO

XPO is a top ten global provider of transportation services, with a highly integrated network of people, technology and physical assets. At XPO, we look for employees who like a challenge and can communicate effectively in all situations. We want to leverage your skills and years of experience to drive positive results while ensuring a bright future for yourself and XPO. If you’re looking for a growth opportunity, join us at XPO.
We are proud to be an Equal Opportunity/Affirmative Action employer. Qualified applicants will receive consideration for employment without regard to race, sex, disability, veteran or other protected status.
All applicants who receive a conditional offer of employment may be required to take and pass a pre-employment drug test.
The above statements are not an exhaustive list of all required responsibilities, duties and skills for this job classification.
Review XPO’s candidate privacy statement here

• Work alongside a talented and maturing team conducting cybersecurity analysis, including working with an outsourced level1 SOC and insourced Level2 SOC function
• Review, analyze, troubleshoot and drive issue resolution utilizing different data feeds, such as SIEMs, intelligence feeds, threat detection systems, IDS/IPS, antivirus servers and vulnerability management scanners
• Assist with the creation and tuning of alerts across XPO monitoring tools
• Collaborate with the Forensics, Security Engineering and Threat and Vulnerability Management teams for investigations, as well as incident response and forensics capabilities and processes
• Partner with the broader security engineering and operations team to manage SIEM platforms, including design and engineering; and develop process and program documentation as neede