TJX Cyber Defense: Senior Incident Response Analyst (SOC) in Marlborough, Massachusetts

Cyber Defense: Senior Incident Response Analyst (SOC)Apply now »

Apply now

  • Start apply with LinkedIn

    • Start apply with Facebook
    • Start apply with Xing
    • Apply Now
  • Start

  • Please wait...

Date:Apr 17, 2018

Location:Marlborough, MA, US

Company:TJX Companies, Inc.

There's nothing as exciting as that moment when you find an amazing value when you least expect it – except being part of the team that makes magical moments like these happen! At TJX, we are proud that, for 40 years, we have been providing amazing value to our customers, but the merchandise we sell is just part of our story. We believe our Associates bring our business to life, and we aim to support them by making TJX a terrific place to work. We are committed to leveraging the differences among our Associates, and believe that the diverse skills, experiences and background that they bring into the organization will help us continue to succeed.

We are a Fortune 100 company and the leading off-price retailer of apparel and home fashions in the U.S. and worldwide. Our retail chains include TJ Maxx, Marshalls, HomeGoods, Sierra Trading Post and Homesense, as well as tjmaxx.com and sierratradingpost.com in the U.S.; Winners, HomeSense and Marshalls in Canada; TK Maxx in the U.K., Ireland, Germany, Poland, Austria and the Netherlands, as well as Homesense and tkmaxx.com in the U.K.; and TK Maxx in Australia. In 2016, we had over $33 billion in sales, more than 3,800 stores, and 235,000 Associates. As a retailer committed to growth, success is always in style at TJX!

Cyber Defense: Senior Incident Response Analyst

The Incident Response Analyst III is an individual contributor responsible for identifying and handling security incidents at TJX. The ideal person in this role brings experience in identifying network and endpoint intrusions, as well as experience handling security incidents. This role will respond ro pre-defined security alerts and work with global team to triage and assess security events. The analyst will work to identify benign events verse legitimate security events then work with senior members of the team to continue the incident response process. The individual will work with multiple technology platforms and interface with other groups within IT Security Operations, offshore partners, and other technology and business functions.

In this role must be able to solve moderately complex problems independently and know when to escalate issues to a senior analyst or management. Additional responsibilities include training of global team members, maintaining IR runbooks for 24/7 monitoring, supporting off hours on-call and track KPIs.

Responsibilities

  • Level 2/3 Intrusion Detection System monitoring

  • Level 2/3 Network Security alert monitoring and triage

  • In-depth analysis of exploit attempts

  • Intermediate malware analysis

  • Security incident handling

  • Mentor junior analysts to develop security skillset

  • Develop procedures focusing on the People, Process and Technology of the SOC organization

  • Stay up to date with current security vulnerabilities and attacks

  • Interfaces with user community and assists with IT security needs and projects

  • Ensures that the user community understands and adheres to necessary procedures to maintain security

  • Performs root cause analysis of low to moderately complex security issues and determines the best course of action to remedy the problem

  • Performs procedures of up to high complexity necessary to ensure the ongoing core objectives of IT Security

  • Performs basic to complex security reviews to ensure compliance with internal security standards and regulatory requirements

  • Recommends new policies and procedures to management and has wide latitude to devise on the best course of action for new procedures

  • Recommends course of action for low to moderately complex situations

  • Serves as technical lead on functional teams or projects and serves as a best practice / quality resource

  • Interfaces with user community to understand their security needs. May implement procedures to meet user needs

  • Acts as a subject matter expert for at least one area within IT Security (ITIM, SOC, etc.) to ensure that the user community understands and adheres to necessary procedures to maintain security

  • Performs other duties as required

  • Investigates and resolves security incidents as needed

  • Ensures that IT Security architecture / designs, plans, controls, processes, standards, policies, and procedures are aligned with IT standards and overall IT Security objectives

  • Identifies security risks and exposures, determines the causes of security violations, designs and implements procedures to prevent and mitigate future incidents

  • Able to create and execute short to medium term strategies

  • Proactively determines if an event needs to be escalated to management or outside of the unit

  • May provide guidance and training to more junior associates

  • May provide budgetary recommendations for future projects / security tools / applications

Must Have

  • Must have expert level understanding of computer security concepts including Identity & Access Management, Network Security, Application Security, Incident Management, or Risk & Compliance

  • 5 Years in IT Security environment or equivalent

  • 2-3 Years of SOC or Incident Response experience

  • A moderate understanding of networking concepts and protocols (such as DNS, SMTP, FTP, SSL, etc.)

  • Demonstrated knowledge and understanding of information technology industry trends and emerging technologies and an ability to relate them to the company and its objectives

  • Strong written and verbal communication skills

  • Expert knowledge of tools and products used in day to day performance (e.g. SourceFire, ITIM, ArcSight)

  • Excellent aptitude for problem solving and IT Security

  • Familiar with IT Regulations, PCI/Sarbanes-Oxley/Mass Privacy laws

  • Bachelor's Degree or equivalent experience

  • Relevant industry certification a preferred (GCIA, GCIH, GREM, GCFA, CEH)

  • Solid working knowledge with MS Office

What's In It For You?

At TJX, you'll not only enjoy working for an industry leader, but we also strive to provide a competitive salary and benefits package.

TJX considers all applicants for employment without regard to race, color, religion, gender, sexual orientation, national origin, age, disability, gender identity and expression, marital or military status, or based on any individual's status in any group or class protected by applicable federal, state, or local law. TJX also provides reasonable accommodations to qualified individuals with disabilities in accordance with the Americans with Disabilities Act and applicable state and local law.

Posting Notes: Marlborough || MA

Nearest Major Market:BostonJob Segment:Merchandising, Law, Outside Sales, Retail Sales, Network Security, Retail, Legal, Sales, Security

Apply now »