Look for more than answers.
At Quest, we are on a continuous journey of discovery and development. It’s this attitude that has made us an industry leader and the #1 Diagnostic Lab in the US. For those joining us, we offer exciting and fast-moving career opportunities where you can affect change at a rate unheard of in many organizations of our size and scope. While we invest in and develop technology to drive our innovations, our ongoing success relies on our people.
As a Incident Response Analyst you will work for the world leader in the industry, with a career where you will have the opportunity to collaborate and affect change while expanding your leadership skills and technical knowledge. You can make a real impact in a market that is growing and developing.
The Incident Response Analyst will work from our world headquarters in Secaucus, NJ. The role offers flexibility understanding the importance of work/life balance.
The Incident Response Analyst provides technical expertise to the Incident Response and Threat Intelligence programs. Adhering to a defined workflow, the analyst responds to cybersecurity incidents impacting Quest and coordinates with relevant IT teams to identify and timely mitigate threats. The analyst conducts research and analysis of adversarial threats posed to Quest’s resources to derive facts, inferences, and projections concerning capabilities, intentions, and likelihood of adversarial attacks under various situations.
-Identify, action, process, and search for the presence of Indicators of Compromise (IOCs) across the enterprise.
-Collect, analyze, and disseminate U.S. Government, commercial and open-source threat intelligence.
-Create, document and follow detailed standard operating procedures and playbooks to appropriately analyze, escalate, and assist in remediation of information security incidents.
-Drive efforts towards the containment of threats and the remediation of the environment during and after a cyber incident.
-Upon detection of an incident, determine extent of compromise and impact; promptly recommend containment and mitigation measures.
-Conduct technical analysis against impacted systems to determine impact, scope, and recovery from active and potential cyber incidents.
-Monitor and analyze security events collected by the SIEM, and identify trends, attacks, and potential threats.
-Collect, develop, and report key metrics for IT Security program areas to illustrate efforts, articulate threats, and inform policy decisions.
-Document findings and prepare detailed reports related to incident response efforts.
-Coordinate with the Security Operations Center (SOC) on investigations and integrating intelligence into security operations.
-Research emerging threats and contribute to detailed intelligence products.
-Build an understanding of Quest’s key technologies, systems, and business practices.
-Other duties, as assigned.
ESSENTIAL QUALIFICATIONS AND SKILLS:
-Bachelor’s degree or equivalent required.
-3+ years of IT Security related experience, preferably in areas of Incident Response, Threat Intelligence, Security ---Engineering, Cyber Threat Intelligence or Malware Analysis.
-Solid understanding of TCP/IP, Networking protocols, Windows OS, Information Security concepts and controls.
-Excellent organizational and time management skills.
-Takes ownership of tasks and works with other teams to see them to completion.
-Able to communicate clearly and unambiguously Ability to explain technical concepts to varied audiences.
-Highly analytical and methodical, with strong problem-solving ability on complex subjects.
-Hands on experience with Security tools and Technologies, including Security Incident and Event Management platforms (SIEM), Threat Intelligence platform, insider threat monitoring tools, user and entity behavior analysis (UEBA), -IDS/IPS, Firewalls, Proxies, Endpoint Security solutions, Malware Sandboxes, etc.
-Familiarity with Security concepts including Vulnerability and Patch Management, DLP, Access Control, Cryptography, Web application attacks, etc.
-Exposure to Enterprise technologies including VPN, Active Directory, Virtualization Platforms, Cloud Services, Databases and Application Infrastructure.
-Formal technical certifications in Networking, Cyber Security or Intelligence analysis fields.
-Knowledge of current malware landscape, threat actor types, motivations, tools, tactics, techniques and procedures.
-Experience with host, network and application log analysis.
-Experience leveraging Open Source Intelligence sources during investigations.
-Passion for the Information Security field and the desire to continue to learn.
Join us for competitive benefits and development opportunities in a progressive and supportive environment. Help us improve our service, and the experiences of our patients and colleagues. Work with us and together we can be better.
Your Quest career. Seek it out.
All requirements are subject to possible modifications to reasonably accommodate individuals with disabilities. Quest Diagnostics is an Equal Opportunity Employer: Women / Minorities / Veterans / Disabled / Sexual Orientation / Gender Identity or Citizenship.