Federal Reserve Bank Senior Incident Response Analyst - NIRT in San Francisco, California

Senior Incident Response Analyst - NIRT


Area Overview: The National Incident Response Team (NIRT), a national service provider for the Federal Reserve System, delivers effective and efficient national intrusion detection, incident response, security intelligence, threat assessment, and vulnerability assessment services for the Federal Reserve System. The mission of the National Incident Response Team is to play a leading role in the Federal Reserve System’s efforts to protect its information systems against unauthorized use.

Job Description: As a senior associate in NIRT’s Incident Response team, this individual will provide investigate work and drive towards resolution of incidents related to cyber security events affecting the FRS and Treasury customers.

Required Skills:

The candidate should possess in-depth knowledge and understanding of a breadth of information technologies and information security topics. Specifically, this should include the following:

  • Performs incident analysis with up to date knowledge in current security threats and techniques

  • Manages security incidents and conducts incident analysis, containment, protection, mitigation, and recovery activities across the System

  • Creates and evaluates incident response workflow processes, procedures, and checklists

  • Analyzes all relevant data sources for attack indicators and potential network compromise

  • Responds to different attack vectors such as data exfiltration, DDoS, malware, and phishing

  • Develops scripts and tools to improve the efficiency of incident detection and response processes

  • Leads investigations with minimal oversight.

  • Leads more complex and/or sensitive cases providing investigative and response direction to other members of the investigation and response team.

  • Performs forensic investigations and reporting with minimal oversight

  • Prepare and present forensic analysis findings to technical and business area stakeholders with tailored reports and case close out meetings.

  • Performs complex malware reversing and documentation with limited supervision.

  • Performs malware behavioral analysis and limited reversing and documents the results of this analysis clearly and concisely.

  • Identifies gaps/opportunities for enhancements to workflows and processes for enhancing the incident response and forensics lifecycle.

  • Aids the incident commander for high severity security incidents.

  • Participates in the identification and development of strategic objectives.

  • Aids in the implementation of initiatives to meet priority objectives.

  • Provides timely incident and investigative updates to senior FRS leadership.

  • Routinely supports cross-team initiatives to help implement cybersecurity improvements

  • Provides subject matter expertise to internal and external stakeholders on an as-needed basis

  • The ability to obtain and maintain National Security Clearance which requires U.S. Citizenship.

    Education/Certifications: Bachelor’s degree in Computer Science, Information Systems, Computer Engineering, Cybersecurity, Systems Analysis or a domain related field or an equivalent combination of education and work experience.

    **Interested candidates should submit their resume to www.frbsf.org//careers
    The Federal Reserve Bank of San Francisco is an Equal Opportunity Employer. Our people proudly reflect the diversity and ideas of the communities we serve.

Organization: *Federal Reserve Bank of San Francisco

Title: Senior Incident Response Analyst - NIRT

Location: CA-San Francisco

Requisition ID: 254915

Other Locations: NY-New York City