Cybersecurity Operations Analyst
What We'll Bring
At TransUnion, we strive to build an environment where our associates are in the driver’s seat of their professional development, while having access to help along the way. We encourage everyone to pursue passions and take ownership of their careers. With the support of colleagues and mentors, our associates are given the tools needed to get where they want to go. Regardless of job titles, our associates have the opportunity to learn new things and be a leader every day.
Come be a part of our team – you’ll work with great people, pioneering products and cutting-edge technology.
What You'll Bring
BS or BA degree preferably in computer or security related field or any combination of equivalent education, experience, and formal training that allows you to meet the requirements of this job
Security Information and Event Management (SIEM) experience
Previous experience in an information security operations role coupled with a strong understanding of the threat landscape
Technical capabilities including an understanding of enterprise security network architecture, threat vectors, and other risk-based security operations
An analytical mindset coupled with a proven ability to examine and utilize raw data
Willingness to acquire in-depth knowledge of network and host security technologies and products
We’re also looking for the preferred skills below. Whether you are proficient or could use some brushing up, we’re happy to support your development in:
An Understanding of the intelligence cycle
Preferred certifications:
SANS SEC460: Threat and Vulnerability Assessment
SANS SEC487: Open-Source Intelligence Gathering and Analysis
SANS FOR578: Cyber Threat Intelligence
Any other Insider Threat related certification, procedure knowledge, experience
Impact You'll Make
The Cybersecurity Operations Analyst will be part of the Global Insider Threat Program (GITP) under User & Entity Behavior Analytics (UEBA). The Cybersecurity Analyst is a professional with experience identifying and triaging potential cyber threats in order to enhance detection and prevention of insider threats within TransUnion’s environment
Carry out an analytical and technical role in identifying behavioral trends and anomalies indicative of potential insider threats to cyber security
Analyze security logs, tooling, and various other data sources to triage reported alerts
Proactively hunt through retrospective searches for known indicators of malicious activity
Play a key role in developing and utilizing GITP’s risk-based scoring capability
Coordinate with Data Loss Prevention and Incident Response staff to tune and improve detection capabilities or to aid in investigations or respond to incidents
Provide actionable insights and guidance to the GITP UEBA Lead
Demonstrate excellent communication skills to include the ability to explain technical data relevance succinctly to management