Job Description:
Principal SOC Responder
The Role
Fidelity’s Security Operations Center (SOC) is seeking a Principal SOC Responder. This is an opportunity to meaningfully contribute to a highly visible security operations function with global impact upon Fidelity, its affiliates, business units, partners, and customers. While working as part of this team, the successful individual will provide world class incident response functions to detect, protect, respond, and sustain operations within cyberspace.
This role will be:
· Capably leveraging their high level analytical, investigative, and puzzle-solving skills to accurately identify solutions to unusual and complex problems
· Utilizing a strong understanding of attacker TTPs and associated detection methods to drive effective and focused incident response.
· Developing and maintaining our SOAR platform, with focus on AI and Automation
· Performing network and host-based forensic analysis to identify indicators of compromise, drive containment, suggest remediation, and create alerting.
· Writing and tuning threat detection content.
· Actively participating and leading Red Team and Purple Team initiatives.
· Engaging in Threat Hunting activities.
The Expertise and Skills You Bring
· 10+ years Information Security Incident Response experience with a focus on detection and response to malicious activity using log data from various sources preferred.
· Strong Networking and Systems experience, preferably in an Enterprise environment
· Strong understanding of Information Security and the threat landscape surrounding enterprise systems.
· Strong Scripting experience (python, powershell, Unix shell)
· Demonstrated experience working in all phases of the SDLC
· Deep understanding and experience using cyber security operations, security monitoring, endpoint(EDR), Network, and SIEM Tools.
· Prior SOC experience a plus
· Extensive knowledge of network and server security protocols, technologies, and products.
· Industry recognized certifications (CISSP, GCIH, GCFA, OSCP, etc) preferred
· Strong oral and written communication skills.
· Relentless curiosity and attention to detail
· Ability to learn quickly and leverage prior experiences to effectively solve current security challenges.
· Refusing to accept the status quo
The Team
The Security Operations Center protects Fidelity and its customers by employing people, processes, and technology to continuously monitor and improve Fidelity’s security posture. While we are able to deploy the latest technology, we believe our greatest asset is our people.
As part of Fidelity’s Security Operations Center, the Incident Response Team is primarily responsible for preparation, detection and analysis, containment, eradication, recovery, and post-incident activity related to cyber incidents. The Principal Incident Responder role will play a key part in driving our strategy forward.
Company Overview
At Fidelity, we are passionate about making our financial expertise broadly accessible and effective in helping people live the lives they want! We are a privately held company that places a high degree of value in creating and nurturing a work environment that attracts the best talent and reflects our commitment to our associates. We are proud of our diverse and inclusive workplace where we respect and value our associates for their unique perspectives and experiences. For information about working at Fidelity, visit FidelityCareers.com. Fidelity Investments is an equal opportunity employer.
Fidelity will reasonably accommodate applicants with disabilities who need adjustments to complete the application or interview process. Please email us at accommodations@fmr.com or call 800-835-5099, prompt 2, option 2 if you would like to request an accommodation.