Security Engineer enhancing cybersecurity tools and solutions for The Walt Disney Company. Performing system analyses and developing security configurations for improved protection against cyber threats.
About the role
- Senior SOC Analyst leading incident triage and coordinating responses for BNY's global Security Operations Center. Mentoring junior analysts and improving operational resilience in the financial services sector.
Responsibilities
- Lead triage and investigation of security alerts, escalating and coordinating incident response as needed.
- Perform root cause analysis, scope affected assets, and drive containment, eradication, and recovery.
- Correlate events across SIEM, EDR, IDS/IPS, firewalls, cloud logs, and identity platforms to identify true positives and reduce false positives.
- Develop, refine, and maintain SOC playbooks, runbooks, and detection logic aligned to the MITRE ATT&CK framework.
- Mentor junior analysts and provide guidance on investigation techniques, documentation standards, and operational best practices.
- Coordinate with Threat Intelligence to enrich investigations, track adversary TTPs, and proactively hunt for indicators of compromise.
- Partner with Engineering teams to tune detections, improve log fidelity, and strengthen preventive controls.
- Create clear, actionable incident reports and executive summaries; contribute to metrics and trend analysis.
- Support purple team exercises and post-incident reviews to capture lessons learned and drive continuous improvement.
- Ensure adherence to regulatory and security policies; maintain audit-ready documentation for investigations and incidents.
Requirements
- 8+ years of experience in a SOC, incident response, or threat detection role, including Tier 2/3 investigations.
- Advanced proficiency with SIEM (e.g., Splunk, QRadar, Sentinel), EDR (e.g., CrowdStrike, Microsoft Defender), and SOAR platforms.
- Strong knowledge of network security, Windows/Linux, identity systems, and common cloud logging sources.
- Hands-on experience with the MITRE ATT&CK framework, threat hunting, IOC/IOA development, and detection tuning.
- Demonstrated ability to lead complex incidents, coordinate stakeholders, and communicate clearly under time pressure.
- Scripting or automation experience (e.g., Python, PowerShell) for investigation enrichment and workflow improvements.
- Familiarity with NIST CSF/800-61, CIS Controls, and common regulatory requirements impacting incident response.
- Excellent documentation skills and an evidence-driven approach to investigations.
Benefits
- BNY offers highly competitive compensation, benefits, and wellbeing programs rooted in a strong culture of excellence and our pay-for-performance philosophy. We provide access to flexible global resources and tools for your life’s journey. Focus on your health, foster your personal resilience, and reach your financial goals as a valued member of our team, along with generous paid leaves, including paid volunteer time, that can support you and your family through moments that matter.
Job title
Job type
Experience level
Salary
Not specified
Degree requirement
Tech skills
Location requirements
Security Operations Lead responsible for security operations aligning with policies and compliance. Handling incident response, vulnerability management, and supporting IT teams with security expertise.
SOC L2 Analyst responsible for security monitoring and incident investigation. Analyzing escalated alerts, conducting correlation with SIEM, and executing response actions.
Cyber Security Specialist protecting digital estate from threats at the University of Edinburgh. Focused on identifying and mitigating cyber risks while supporting teaching and research services.
Lead Specialist in Security Operations, enhancing detection engineering and incident response at Pearson. Collaborate with teams and drive process improvements in a high - paced environment.
Cybersecurity Incident Response Analyst detecting and responding to cyber threats at NOV. Collaborating using AI tools to enhance cybersecurity operations across IT, cloud, and OT environments.
Security Engineer II at AvidXchange enhancing security operations and incident response. Collaborating with teams to develop, tune and improve security monitoring and automation capabilities.
Director leading security operations strategy and overseeing investigations at Ford Motor Company. Responsible for global investigations, crisis management, and team leadership.
Cloud Security Engineer at Artemys designing and maintaining secure Azure infrastructures, overseeing security monitoring and incident management.
Lead global Cyber Detect and Respond team at Assa Abloy, ensuring timely incident response and security compliance. Oversee operations while collaborating across IT and business functions for effective threat management.