Overview
Lead II, Incident Response Engineer/Hybrid or Virtual Remote Jobs in Phoenix, Arizona, USA at S&P Global
Title: Lead II, Incident Response Engineer/Hybrid or Virtual Remote
Company: S&P Global
Location: Phoenix, Arizona, USA
Type: Full Time, Remote/Work from Home
Category: IT/Tech, Security
Position: Lead II, Incident Response Engineer (Hybrid or Virtual) | Phoenix, AZ, USA | Remote
Lead II, Incident Response Engineer (Hybrid or Virtual)
About the Role:
Grade Level (for internal use):
12The Team:
S&P Ratings Security team focuses on protecting our clients and users from all aspects ofmodern-day security threats. The mission of our team is to safeguard systems and data by developinginnovative solutionsto counter the biggest security challenges.
Responsibilities and Impact:
This senior technical lead role requires extensive experience in incident response, threat analysis, forensics, application security, and cloud security. You will collaborate across Security, Software Development, and Operations teams to analyze cyber threats and lead the management of cybersecurity incidents, ensuring a proactive and coordinated approach to protecting organizational assets.
A successful candidate for this position will:
Develop and implement an Incident response, threat assessment, and attack simulation function.
Maintain expert-level knowledge of attacker techniques and detection capabilities.
Establish a methodology for evaluating business risk and coordinating a risk-based response to threat intelligence provided by the corporate information security team.
Build an attack simulation function that features offensive security assessment working collaboratively with engineers and analysts to validate and strengthen the security defenses across Ratings systems and software.
Coordinate with the Corporate Incident and Crisis Management teams to mitigate the risk.
Understand the compliance requirements of a highly regulated business division and ensure that cyber security response supports such compliance.
Enhance the division Cyber Incident Response Plan (CIRP) to improvecommunicationand response to incidents being managed by the corporate Cyber Incident Response Team (CIRT).
Monitor and track threat actors/groups identified as most likely to attack the firm and/or our vertical and work with relevant internal teams on defensive measures.
Monitor Intelligence feeds/sources for work initiation.
Remain current with new security threats and offensive and defensive security best practices.
Compensation/Benefits Information (US Applicants Only):
S&P Global states that the anticipated base
salary range
for this position is $130,000 – $230,000. Final base salary for this role will be based on the individual’s geographic location, as well as experience level, skill set, training, licenses, and certifications.
In addition to base compensation, this role is eligible for an annual incentive plan. This role is eligible to receive additional S&P Global benefits. For more information on the benefits that we provide to our employees, please .
What We’re Looking For:
Basic
Required Qualifications:
Bachelor’s degree in computer science/ related field, and/or relevant work experience.
10 or more years of progressive related experience in incident response, threat intelligence, vulnerability assessment, and/or vulnerability management roles.
Security Forensic analysis skills.
A strong understanding of network security principles and encryption technologies.
Demonstrable experience with cyber threat intelligence vendor tools and services.
Knowledge and understanding of the Intelligence Lifecycle.
MITRE ATT&CK Framework.
Additional
Preferred Qualifications:
Experience worki…
