Cyber Incident Response Analyst

at  Chevron

Chevron’s strategy is straight-forward: be a leader in efficient and lower carbon production of traditional energy, in high demand today and for decades to come, while growing lower carbon businesses that will be a bigger part of the future. To achieve these goals, we’ll build on the assets, experience, capabilities, and relationships we’ve developed over 140 years to incubate and grow new business.
Technology will play a crucial role in unlocking ever cleaner and more affordable sources of energy. Chevron is seeking innovative, technology professionals with a desire to thrive in the global digital environment and help us lead the global energy transition. An IT career at Chevron offers you the opportunity to work in a technical environment with a global reach. You’ll find that we make a business of investing in our people and encouraging your professional development through a learning culture and challenging on-the-job opportunities. We differentiate ourselves through the application of cutting-edge technology, and by taking a collaborative approach that includes in-house expertise, proprietary solutions, and strategic partnerships. We also offer flexible work schedules and very competitive benefits.
Join Chevron IT. Lend us your skills and enjoy a great career with Chevron.
The Role
The Cyber Intelligence Center delivers cyber threat monitoring and incident response.
We leverage threat intelligence that enables early detection and rapid response to protect Chevron global operations.
This role supports 24x7 cyber threat detection and incident response
The function leverages threat intelligence to proactively hunt for and respond to external cyber threats.
The operational scope includes Chevron’s global network infrastructure, industrial control systems and information assets.

As a Cyber Incident Response Analyst, you will:

• Perform triage of potential cyber incidents from a variety of intake sources, including but not limited to suspicious emails, security technology alerts, anomalous activity reported by users, and activity identified through threat intelligence and/or threat hunting
• Carry out appropriate processes to contain and remediate cybersecurity incidents through coordination across the IT Function and Business Representatives
• Perform forensic analysis of compromised hosts and develop an action plan for remediation
• Examine potentially malicious files, with the goal of breaking down programmatic functions and techniques
• Extract indicators of compromise to then feed detection capabilities as a means of continuous improvement
• Participate in an on-call rotation in support of 24x7 escalation activities outside of standard business hours

Requirements:
Experience
-

Hands on experience performing incident response in a security operations center or equivalent cybersecurity organization

• Hands on experience triaging suspicious emails and security technology alerts to identify true positive cyber incidents
• Hands on experience in digital forensics and malware analysis
• Proven ability to coordinate assignments within a global team setting, and communicate findings using both technical and non-technical content
• Experience with techniques and tools that promote effective analysis of root cause and creation of action plans

Skills

• Adept in cyber incident triage, cyber incident response, digital forensics, and cyber threat hunting
• Expertise in the identification of cyber attack techniques
• Familiarity with reverse engineering of malicious code, with an understanding of programming languages, scripting and coding techniques
• Ability to influence and/or motivate teams, and work with a variety of disciplines, cultures, and environments.
• Ability to work effectively, and communicate effectively at all levels with operations, design, projects, vendors, peers, etc.
• Ability to communicate in a clear, concise, understandable manner both orally and in writing
• Experience with KQL and SPL search syntaxes a plus

Education

• Bachelor’s Degree in related fields
• Professional cybersecurity certifications are a plus

Flexible Working
Chevron offers a complete package and provides career development opportunities to all employees. We do this through on-boarding, training and development, mentoring, volunteering opportunities and employee networking groups. We advocate work-life balance and offer employees access to various health and wellness programs.

What type of flex work does the position offer?

• We offer alternative work schedules including 9/80 (work 9-hour days, with every other Friday off)
• We offer a hybrid work model - work remotely from home 2-3 days a week

Relocation & International Considerations

• Relocation [ may / will not be] considered.
• Expatriate assignments [ may / will not be ] considered.

Chevron regrets that it is unable to sponsor employment Visas or consider individuals on time-limited Visa status for this position.
Working with us
Chevron is one of the world’s leading integrated energy companies. We believe affordable, reliable and ever-cleaner energy is essential to achieving a more prosperous and sustainable world. Chevron produces crude oil and natural gas; manufactures transportation fuels, lubricants, petrochemicals and additives; and develops technologies that enhance our business and the industry. We are focused on lowering the carbon intensity in our operations and seeking to grow lower carbon businesses along with our traditional business lines. More information about Chevron is available at
www.chevron.com
.
Benefits
Chevron offers competitive compensation and benefits programs which includes, but is not limited to, variable pay, healthcare coverage, retirement plan, insurance, time off programs, training and development opportunities and a range of allowances connected to specific work situations. Details of such benefits and allowances are available at
https://hr2.chevron.com/.
The compensation and reference to benefits for this role is listed on this posting in compliance with Colorado law. The selected candidate’s salary will be determined based on his or her skills, experience, and qualifications.
Regulatory Disclosure for US Positions:
Chevron is an Equal Opportunity / Affirmative Action employer. All qualified applicants will receive consideration for employment without regard to race, color, religious creed, sex (including pregnancy), sexual orientation, gender identity, gender expression, national origin or ancestry, age, mental or physical disability, medical condition, reproductive health decision-making, military or veteran status, political preference, marital status, citizenship, genetic information or other characteristics protected by applicable law.
We are committed to providing reasonable accommodations for qualified individuals with disabilities. If you need assistance or an accommodation, please email us at
emplymnt@chevron.com
.
Chevron participates in E-Verify in certain locations as required by law

Please refer the Job description for details