Cyber Attack Jobs (NOW HIRING)

Hands-on role involved in the day-to-day operation of the Flowers Foods cyber security threat detection and response function. Position is responsible overseeing/performing the daily, tactical processes required for the protection of Flowers Foods cyber environment through cybersecurity investigations, cybersecurity incident detection and response processes, and cybersecurity operations improvement project planning and execution to support the function.

Position requires an incumbent with strong analytic and problem-solving skills, with the ability to manage expectations appropriately, provide superior customer/client experience, and build long-term relationships.

Position requires the ability to work well with minimum supervision, while taking responsibility for assignments and seeing them through to a successful conclusion. 

Responsibilities include, but are not limited to:

• Proactive Threat Detection: Contributes to and operationalizes the strategy to shift threat detection capabilities left, confronting attackers earlier in their operations. This is achieved through developing and executing proactive threat hunts across various environments, researching and recommending deceptive technologies, and keeping current with improvements in threat detection procedures.
• Cybersecurity Monitoring and Analysis: Maintains situational awareness of suspicious/malicious cybersecurity events throughout the Flowers Foods environment. This is achieved through tuning and analysis of alerts generated on various security platforms such as EDR, SIEM, Identity, Brand Monitoring, Network IDS, etc.
• Incident Response: Operates as a key component of the Flowers Foods CSIRT by owning the incident responder role during cybersecurity incident and wargame exercises. This is achieved through structured implementation of incident response methodology to scope, document, and respond to any threat actor presence within the Flowers Foods environment.
• Operational Optimization: Contributes to, maintains, and executes the procedures key to the success of Cyber Defensive Operations at Flowers Foods. This is achieved through development and improvement of triage guides, analysis aids, incident response playbooks, and standard operating procedures for various tasks vital to the Cyber Defensive Operations function.
• Engineering and Intelligence: Partners with the Engineering and Architecture and Cyber Threat Intelligence teams to translate operational challenges and opportunities into actionable defensive improvements. This is achieved through identifying tooling and policy configuration changes, improved detection methods, and enriched analysis capabilities through awareness of operational environment and adversarial tactics.
• Perform other duties which are deemed by management to be an integral part of the job, including, but not limited to fulfillment of work schedules, adherence to attendance policies, and other applicable operating rules, policies and procedures.

• 6+ years' experience in the Cybersecurity field.
• 5+ years working in progressive Cyber Defensive Operations roles focusing on threat detection and response, digital forensics, malware reverse engineering, threat intelligence, threat hunting, etc.
• Previous supervisory experience preferred.
• Must have in-depth knowledge and experience of the following:
  • Cyber attack objectives and attack lifecycles.
  • Current and emerging threat actor tactics, techniques, and procedures.
  • Incident Response process and methodology.
  • Utilization of Cyber Defensive Operations tooling to include SIEM/SOAR, EDR, IDS, NAC, Email security tooling, Forensics collection and investigation software, etc.
  • Cyber Defensive Operations metrics and KPI's.
  • Proficiency in process formulation and improvement.
  • Strong analytical, data-processing and problem-solving skills.
  • Solid technical background with the ability to give instructions to a non-technical audience.

Desired Education

• Bachelor's degree in a computer-related field such as computer science, management information system or information science. Five years of relevant IT job experience may be substituted for the degree requirement.
• A minimum of one information security certification: GCIH, GCFA, GCFE, CISSP is required. Certification must be maintained throughout employment tenure.
• Other technology relevant industry certifications are encouraged.