Information Security Sr Analyst

About Black & Veatch

At Black & Veatch, we believe that true value stems from the unique skills and experiences of our professionals. By fostering the exchange of ideas among a diverse group of individuals, our teams gain a broader perspective, enabling them to develop superior solutions for our clients. This commitment to diversity and inclusion is at the heart of our operations.

Information Security Senior Analyst - Incident Response

Req Id: 110024

Business Unit Sector: CPL-BECIO-CIO

Department: BVCPL DIGITAL OFFICE

Work Location: Pune, MH, India

Opportunity Type: Staff

Relocation Eligible: Yes

Employment Type: Full-Time

Contract Hire for Project: No

Visa Sponsorship Available: No

Recruiter: Indranee Bindu

Job Summary

The Information Security Senior Analyst, specializing in Incident Response, will be a key member of our Computer Security Incident Response Team (CSIRT). This role is responsible for developing, implementing, and executing standards, procedures, and processes to detect, resist, and recover from security incidents. This is an ideal opportunity for an early-career analyst eager to learn and grow within the cybersecurity field. We are looking for individuals with strong technical acumen, passion, and determination, as these qualities will be highly valued throughout the interview process.

Key Responsibilities

• Respond to computer security incidents in accordance with established CSIRT policies and procedures.
• Provide technical guidance to first responders for effective cybersecurity incident handling.
• Deliver timely and relevant updates to appropriate stakeholders and decision-makers.
• Communicate investigation findings to relevant business units to enhance the overall cybersecurity posture.
• Validate and maintain incident response plans and processes to effectively address potential threats.
• Compile and analyze data for management reporting and performance metrics.
• Analyze the potential impact of emerging threats and communicate identified risks to detection engineering functions.
• Perform root-cause analysis to document findings and participate in root-cause elimination initiatives.
• Triage and assess the risk of security incidents, conduct real-time analysis, and manage workload during investigations and incidents.
• Create runbooks for frequently occurring incidents to automate or assist with resolution processes.

Minimum Qualifications

• A Bachelor of Science (BS) or Master of Arts (MA) degree in Computer Science, Information Security, or a related field.
• A minimum of 5 years of experience in incident response.
• Familiarity with incident response frameworks and methodologies, such as NIST 800-61 and MITRE ATT&CK.
• Experience with incident response tools and technologies, including Security Information and Event Management (SIEM), forensics, and threat intelligence tools, or equivalent experience in a lab environment.
• Experience in reporting and communicating incident details, improving incident response processes, and contributing to recovery from security incidents is beneficial.

Preferred Qualifications and Competencies

• Candidates will be assessed based on their ability to demonstrate the competencies required for success in the role, as detailed below.
• Demonstrated ability to communicate complex technical issues clearly and effectively to diverse audiences, both orally and in writing, in an authoritative and actionable manner.
• Understanding of organizational mission, values, and goals, and the ability to consistently apply this knowledge.
• Strong decision-making capabilities, with a proven ability to weigh the relative costs and benefits of potential actions and identify optimal solutions.
• A proven ability to influence others to modify their opinions, plans, or behaviors.
• A team-focused mentality with the ability to work effectively with diverse stakeholders.
• Strong problem-solving and troubleshooting skills.

Certifications

Compensation details available upon request.

Work Environment/Physical Demands

Compensation details available upon request.

Salary Plan

ITS: Information Technology Service

Job Grade

016

Black & Veatch is an Equal Employment Opportunity (EEO) employer committed to affirmative action. We do not discriminate based on age, race, religion, color, sex, national origin, marital status, genetic information, sexual orientation, gender identity and expression, disability, veteran status, pregnancy status, or any other protected status under law.

We are committed to being an employer of choice by creating a valuable work experience that keeps our people engaged, productive, safe, and healthy. Our comprehensive benefits package varies by region and employment status, and may include health, life, accident, and disability insurances, paid time off, and financial programs. Employees may also be eligible for a performance-based bonus program.

By valuing diverse voices and perspectives, we cultivate an inclusive environment that drives innovation and delivers effective solutions for our clients.