Benjamin Moore is proud to be a part of Berkshire Hathaway, which was recognized by Fortune magazine as the world's fourth most admired company. And for more than 130 years we've been a respected leader in the architectural coatings and home décor landscape; creating the products and tools that enrich and beautify thousands of communities each day. We recognize that our associates are the driving force behind our success and we strive to provide a work environment where hard work, creativity and purposeful collaboration are fostered and encouraged.
Join a company where innovation is constantly recognized as we look for individuals who produce world-class products, best-in-class services and customer experiences, design pioneering paints using the latest technologies and deliver unparalleled value and brand experiences for our customers and retail network.
As a key member of BMC Security Operations, the Sr. Information Security Analyst will provide technical expertise within the areas of threat management, forensics, investigations, and incident response. The individual will work with various teams and stakeholders and provide support to the Computer Security Incident Response Team (CSIRT).
The position requires the ability to analyze and interpret security incidents and drive outstanding incidents to closure. Key responsibilities include assisting in the day-to-day operations and monitoring of BMC security applications including Security Incident and Event Management (SIEM) platform, endpoint protection (AV/ Anti-Malware), data loss prevention, intrusion detection/prevention systems, Network Access Control (NAC) and other commercial and open source security systems/applications.
Operations support includes the ability to create formal documentation and provide recommendations for security improvements. This role will require the individual to multitask and serve as a technical point-of-contact for information security related incidents. The role requires occasional off hours support and on-call rotation.
Define and promote processes, policies, standards and procedures to assure compliance with corporate and regulatory policies.
Validate IT infrastructure and other reference architectures (manufacturing, etc.) for security best practices and recommend changes to enhance security and reduce risks.
Document storage and transmission of sensitive information and provide architecture and requirements to ensure that this data is secured in accordance with Benjamin Moore policies, best practices, and regulations.
Monitor various industry standard security tools (e.g., SIEM, IDS/IPS, Firewalls, Network Access Control, Endpoint Protection, DLP, etc.) to identify potential security related incidents.
Conduct vulnerability scans using industry standard tools such as Qualys, Rapid7, Metasploit, etc.
Analyze logs and events to report and follow-up on any unusual or suspect activities.
Maintain incident response procedures to ensure proper escalation, analysis, and resolution of security incidents.
Work with various stakeholders to ensure appropriate communication, coordination and closure of incidents.
Properly acquire and preserve integrity of data/evidence required for incident analysis to help determine the impact, and the root cause of the incident.
Participate in and lead product selection, vendor evaluations, and implementations of security technologies.
Assist with review and assessment of third parties as part of the overall Third-Party Risk Management (TPRM) program.
Industry security and systems certifications (CISSP, CEH, GCIH, RHCSA/RHCE, MCSE, CCNA, etc.)
Security operations and/or engineering experience.
Experience monitoring for policy violations or malicious activity and providing appropriate response and remediation.
BNY Mellon New York, NY
Arete Advisors New York, NY
Arete Advisors New York, NY
Finra New York, NY
SOS Security New York, NY