Cybersecurity Analyst - Tier 2

Job Description:

DXC Technology (NYSE: DXC) helps global companies run their mission critical systems and operations while modernizing IT, optimizing data architectures, and ensuring security and scalability across public, private and hybrid clouds. The world’s largest companies and public sector organizations trust DXC to deploy services across the Enterprise Technology Stack to drive new levels of performance, competitiveness, and customer experience. Learn more about how we deliver excellence for our customers and colleagues at DXC.com.

Our DXC Security services helps customers assess risk and proactively address all facets of their security environment, from threat intelligence to compliance. We leverage proven methodologies, intelligent automation and industry-leading partners to tailor security solutions to our customers' unique business needs.

Essential Job Functions:

• The Tier 2 Information Security Analyst is responsible for the first line of security incident response in the client SIEM environment. The core responsibilities include the monitoring of client SIEM alerts in real-time, researching threat information, and escalating legitimate security incidents to the client. This position is also a technical escalation resource for the Tier I Information Security Analysts.
• Tier 2 analysts provide a further in-depth analysis and focus on incident support and alert handling from Tier 1. They coordinate security monitoring findings with the Threat Intelligence team, vendor partners, and with specific points of contact to obtain a wider analysis of event data and its impact on designated environments.
• Tier 2 analysts will utilize various meeting systems and telephone bridges to provide updates on attacks and advise clients on technical countermeasures. Tier 2 analysts will also perform a Root Cause Analysis of an attack. The investigation may continue for an extended period time beyond the resolution of an incident to gather additional information, and coordinate with constituents to determine the event’s extent and severity.
• Tier 2 monitoring functions:
  • Triage: In support of Tier 1 staff OR independently - review, assess and act. May be direct or part of an automated action.
  • Threshold Monitoring: Actively monitor indicators that are approaching security, service and/or compliance Thresholds. Also included recommendation on the ongoing establishment and adjustment of said thresholds.
  • Playbooks/Threat Analysis: Execute analysis process as required. Assist in the general maintenance and improvement of the process and/or playbooks.
  • Active Investigation/Cause Analysis (Who, What, When, Where, How): initiation and follow-through to ensure quality forensic materials are captured. Participate in Root Cause Analysis if required.
  • Escalation: Maintain the escalation chain integrity and ser
  • vice levels.

Basic Qualifications:

• 2 – 4 years of relevant experience or equivalent combination of education, certifications, and work experience: undergraduate degree and 1-2 years of relevant experience.
• 1 – 2 years of Information Technology experience with network technologies, specifically TCP/IP, and related network tools.
• Understanding of source code, hex, binary, regular expression, etc.
• Experience assisting the development and maintenance of tools, procedures, and documentation.
• Strong deductive reasoning, critical thinking, problem solving, and prioritization skills.
• Experience with reviewing raw log files, data correlation, and analysis (i.e. firewall, network flow, IDS, system logs).
• Experience using SIEM tools, ticketing systems, and performing cyber threat analysis.

Other Qualifications:

• Fixed 12 hours shifts, 2-2-3 schedule
• Shifts are 3:00AM or 3:00PM
• To conform to U.S. Government space technology export regulations, including the International Traffic in Arms Regulations (ITAR) you must be a U.S. citizen, lawful permanent resident of the U.S., protected individual as defined by 8 U.S.C. 1324b(a)(3), or eligible to obtain the required authorizations from the U.S. Department of State.

Work Environment:

• Remote

Compensation at DXC is influenced by an array of factors, including but not limited to the experience, job-related knowledge, skills, competencies, as well as contract-specific affordability and organizational requirements. A reasonable estimate of the current compensation range for this position is $63,600 - $118,000.

Full-time hires are eligible to participate in the DXC benefit program.  DXC offers a comprehensive, flexible, and competitive benefits program which includes, but is not limited to, health, dental, and vision insurance coverage; employee wellness; life and disability insurance; a retirement savings plan, paid holidays, paid time off.

If you are an applicant from the United States, Guam, or Puerto Rico

DXC Technology is an Equal Opportunity/Affirmative Action employer. All qualified candidates will receive consideration for employment without regard to disability, protected veteran status, race, color, religious creed, national origin, citizenship, marital status, sex, sexual orientation/gender identity, age or genetic information. DXC's commitment to diversity and inclusive selection practices includes ensuring qualified long-term unemployed job seekers receive equal consideration for employment. View postings below.

We participate in E-Verify. In addition to the posters already identified, DXC provides access to prospective employees for the Federal Minimum Wage Poster, Federal Polygraph Protection Act Poster as well as any state or locality specific applicant posters. To access the postings in the link below, select your state to view all applicable federal, state and locality postings. Postings are available in English, and in Spanish, where required. View postings below.

Postings link

Disability Accommodations

If you are an individual with a disability, a disabled veteran, or a wounded warrior and you are unable or limited in your ability to access or use this site as a result of your disability, you may request a reasonable accommodation by contacting us via email.

Please note: DXC will respond only to requests for accommodations due to a disability.

Recruitment fraud is a scheme in which fictitious job opportunities are offered to job seekers typically through online services, such as false websites, or through unsolicited emails claiming to be from the company. These emails may request recipients to provide personal information or to make payments as part of their illegitimate recruiting process. DXC does not make offers of employment via social media networks and DXC never asks for any money or payments from applicants at any point in the recruitment process, nor ask a job seeker to purchase IT or other equipment on our behalf. More information on employment scams is available here.

Apply