FB
Federal Reserve BoardInformation Security Specialist
Information Security Specialist at Federal Reserve managing cybersecurity risk and assessments. Collaborating with tech professionals to enhance security posture and risk management processes.
About the role
- Lead and direct all phases of the incident response lifecycle, from initial detection and triage to containment, eradication, and post-incident analysis and review.
- Conduct in-depth forensic analysis of security incidents to determine the root cause, assess the impact, and define the scope of the incident.
- Collaborate with engineering and product teams to develop and implement effective containment and eradication strategies for SaaS environments.
- Coordinate recovery activities to ensure the timely and secure restoration of impacted systems and services.
- Support design, develop, and implement robust detection rules and signatures across our security toolset (e.g., SIEM, EDR, WAF, CSPM) to proactively identify malicious activity.
- Continuously refine and optimize detection rules to minimize false positives and enhance the accuracy of our security alerts.
- Evaluate and recommend new security technologies and methodologies to enhance our security posture.
- Create and maintain detailed documentation for all incident response procedures, playbooks, and runbooks.
- Develop and document security best practices and guidelines for engineering and product teams.
- Contribute to the creation and maintenance of our overall security knowledge base.
- Schedule and manage tabletop exercises to test and refine our incident response capabilities.
- Document the results of tabletop exercises and track the remediation of any identified gaps.
- Provide training and guidance to junior analysts and other team members on incident response and security best practices.
Requirements
- Bachelor's degree in Computer Science, Information Security, or a related field, or equivalent practical experience.
- Proven experience in a security role with a strong focus on incident response and security engineering.
- Demonstrated experience leading incident response for a SaaS product company.
- Strong understanding of common attack techniques, tactics, and procedures (TTPs).
- Experience with Security Information and Event Management (SIEM) platforms (e.g., Splunk, Elastic SIEM, Microsoft Sentinel) and developing detection rules.
- Familiarity with Endpoint Detection and Response (EDR) solutions.
- Proficiency in at least one scripting language (e.g., Python, Go, etc).
- Excellent analytical, problem-solving, and communication skills.
- Proven ability to write clear and concise documentation.
- This position includes participation in an on-call rotation
Benefits
- Competitive compensation, plus all full-time employees participate in our ownership program - because everyone should have a stake in our success.
- Flexible schedules and a remote-friendly culture, with hybrid or onsite work options available in some regions for specific roles
- Generous time off, including local holidays and our annual company-wide “Dim the Lights” week in late December, when we encourage everyone to step back and recharge
- Comprehensive wellness programs and mental health support
- Annual learning and development stipends to support your growth
- The technology and tools you need to do your best work — typically a Mac, with PC options available in some locations
- Motivosity employee recognition program
- A culture rooted in inclusivity, support, and meaningful connection
Job title
Job type
Experience level
Salary
Degree requirement
Tech skills
Location requirements
AU
Jr Information Security Analyst conducting PCI - DSS compliance projects for AuditSafe. Supporting security controls implementation and leading technical meetings in a hybrid work environment.
A2
A2SECURECybersecurity Consultant
Cybersecurity Consultant ensuring cybersecurity operations and delivering consultancy projects for clients, focusing on strategic risk management and compliance assessments.
Leads SOC team ensuring cybersecurity for LWSA's operations. Responsible for team management, incident response, and security monitoring.
LG
Liebherr GroupSenior IT Security Engineer
Senior IT Security Engineer developing and optimizing innovative security solutions in an international environment. Engaging in corporate information security utilizing best practices.
Regional Lead overseeing physical security infrastructure and operations for OpenAI’s data centers in Singapore. Collaborating with teams and managing security technologies for compliance and risk assessment.
ZS
Business Continuity and Cybersecurity Awareness Manager at ZEAL, leading BCM and cybersecurity training initiatives. Ensuring resilient operations and fostering secure behavior across teams.
BG
Bureau Veritas GroupOperations Manager, Fire Safety and Building Equipment
Responsable d'Opérations en sécurité incendie et équipements du bâtiment chez Bureau Veritas. Animer une équipe tout en contribuant au développement commercial et à la qualité des prestations.
Senior Inhouse IT Consultant responsible for the network and server infrastructure of the L - mobile Group. Planning security measures and managing cloud and virtualization platforms.
Manager overseeing threat hunting and incident response using SIEM platforms in a leading financial institution in MENA. Enhancing security operations with expertise in Cyber Defense Center and Security Operations Center roles.