Sr. Incident Response Engineer

Location: Burbank, CA
Date Posted: 02-10-2019
Job Description
 
What part will you play? 
Are you interested in being part of the rapidly evolving entertainment industry, helping to continue bringing blockbuster films to audiences like the Harry Potter series and Wonder Woman as well as hit televisions shows such as Ellen and The Big Bang Theory? Do you want to design, implement, and operate a risk management program that drives the effective and efficient risk assessment, treatment, and acceptance processes intended to help technology functions identify and mitigate strategic, privacy, technical, and information-security related risks? Do you enjoy identifying and assessing the technical risks associated with large-scale systems implementations and helping to identify solutions toward mitigating those risks? If so, this is the right opportunity for you! 

Seeking a Sr. Incident Response Engineer for the Information & Content Security team: Security Ops & IR department. This position is a key member of the Security Incident Response Team (SIRT), coordinates with SOC engineers to assess events and threats, provides subject matter expertise in data analysis and risk assessments and responds to security incidents.  This position manages vendors that provide incident response and services, provides network and system forensics in support of investigations and global security incident response activities.  Lastly, this position will plan and oversee Red Team activities conducted within corporate networks in order to test the effectiveness of detection controls and SOC operations
 
Your core priorities will be to:  
  • Security Incident Response:
    • Assessing and triaging potential security incidents.
    • Coordinating and leading response to high impact security incidents.
    • Lead efforts to detect and analyze malicious software.
    • Windows and Unix security vulnerability assessments and penetration testing.
    • Network perimeter device and system log analysis.
    • Programming and scripting using Python, Linux shell scripts, regex, etc.
    • Oversee maintenance of information security services.
  • Assist in selection of product and technical data for ongoing projects.    
  • Evaluate and oversee implementation of information security strategies and solutions in support of Studio initiatives.    
  • Lead projects, planning, controlling, executing and closing assigned projects to produce required deliverables.   


KNOWLEDGE, SKILLS & ABILITIES REQUIRED 
  • Bachelor’s degree in Computer Science, Engineering or related discipline preferred.
  • Four security certifications required. GIAC certs preferred (GSEC, GISF, GPEN, GWAPT, GCIH, GCIA or GCUX or equivalent).
  • CISSP or CISM or equivalent preferred.
  • Minimum eight (8) years of experience in Information Security.
  • Minimum eight (8) years of experience with TCP-based networking.
  • Five (5) years of Unix and Windows system administration preferred.
  • UNIX, C, HTML, PERL and CGI programming experience are required.
  • Experience with Intrusion Detection Systems required (snort, Bro preferred).
  • Experience with firewalls required (Palo Alto, Netscreen, Juniper and Cisco preferred).
  • Experience with Security Incident Response is required.
  • Experience with Security Risk Management is required.
  • Experience in Linux system administration is required.
  • Experience with Windows system administration is required.
  • Understanding of commonly used protocols and services is required (e.g. SSL, DNS, TCP/UDP, WWW, FTP/SFTP, NTP, Telnet, NFS, SSH, LDAP, etc.).
  • Understanding of networking hardware; routers, switches, and load-balancers, particularly Brocade/Foundry and Cisco products is required.
  • Understanding of network protocols and architecture (TCP/IP, ATM, WAN, Bridges, etc) is required.
  • Understanding of virtual networking hardware including VMware Vsphere, ESX preferred.
  • Experience with securing cloud-based solutions is desirable (e.g. Amazon AWS, Azure, Level 3, Akamai, etc).
  • Experience securing remote operating systems and applications are preferred.
  • Experience with version control systems is preferred.
  • Experience in three or more information security domains is required.
  • Must be able to effectively manage a number of projects and priorities in parallel.
  • Working knowledge of networks and data center standards and procedures.


Candidate with the following given higher consideration
  • Experience with media, production and post-production digital media systems and services.
  • Experience with on-line and mobile gaming systems
this job portal is powered by CATS