Job Detail

Threat Analyst II - Opportunity for Working Remotely - VMware
Reston, VA
Posted: Oct 05, 2022 03:41

Job Description

VMware is the leader in virtualization and cloud infrastructure solutions that enable our more than 350,000 enterprise and SMB customers to thrive in the Cloud Era/A pioneer in the use of virtualization and automation technologies. Our team of 20,000+ people working in 50+ locations worldwide are committed to building a community where great people want to work long term by living our values of passion, innovation, execution, collaboration, active learning and giving back. If you are ready to accelerate, innovate and lead, join us as we challenge constraints and problem solve for tomorrow today.

This role resides in the VMware Security Business Unit, VMware Carbon Black, which is the leader in cloud-native endpoint protection dedicated to keeping the world safe from cyber-attacks. The VMware Carbon Black Cloud consolidates endpoint protection and IT operations into an endpoint protection platform (EPP) that prevents advanced threats, provides actionable insight, and enables businesses of all sizes to simplify operations.

Job Role and Responsibilities:

This person will play a critical role on the VMware Carbon Black Managed Detection team as a security advisor, detection engineer, and product evangelist. The Threat Response Analyst (MDR) is responsible for supporting the team's goals by building and supporting the processes and tools required for endpoint security monitoring, security event triage, and incident response for VMware Carbon Black customers, including automating processes, responding to security incidents, improving VMware Carbon Black security efficacy and establishing new detections. The ideal candidate will possess extensive offensive and defensive security knowledge and skills which are needed to aid with technical understanding and credibility during active security incidents, ensuring the success of VMware Carbon Black's Managed Detection team. This role will lead the innovation for building new detection capabilities as needed to support Managed Detection's ability to detect and respond rapidly to security incidents and overall product efficacy. As part of the Managed Detection team, the Principal Security Analyst works closely with Threat, R&D, Security Efficacy, and Product Management to demonstrate product capability, inspire confidence, and effectively communicate the power of VMware Carbon Black solutions.

Required Skills:

Ability to design playbooks for responding to security incidents

Collaborate with customers and team members to develop an extensive strategy for effective detections of malicious activity

Identify and implement new detections and detection improvements associated with an evolving threat landscape

Provide actionable statistical analysis of widespread threat vectors across multiple, varied businesses

Thorough understanding of the entire Incident Response process

Windows disk and memory forensics

Experience building scripts or tools to automate and improve the investigation processes

Act as a senior member of the team, providing leadership, guidance, mentorship, and training to junior team members

Preferred Skills :

5+ years of security incident response, remediation and threat detection

Exceptional verbal communication skills in relation to technical subject matter

Demonstrated experience as an expert in endpoint, workload, kubernetes and network security

Ability to talk to VMware Carbon Black customers in a comprehensive and effective manner and/or experience in a client facing role

Experience with vSphere, vCenter, and VDI in an enterprise capacity preferred

Expert in Windows, macOS, and/or linux endpoint operating systems

Endpoint security, NGAV, EDR, and threat hunting experience

Proven technical track record with securing Windows, macOS, and linux operating systems

Static and dynamic malware analysis

Strong technical writing skills

BS/BA in IT, IS or related field of study or equivalent

Preferred Certifications:

CISSP

GCIH

GCFE

GCFA

SSCP

GREM

For positions located in Colorado: This position has a salary range of $79,000 to $134,000 annually. Bonus, commission, and/or equity may be eligible for this position. Additional benefits for this position can be found at https://benefits.vmware.com/. *Note: Disclosure of Colorado pay and benefits required per sb19-1115

This job may require the candidate to travel and/or work from a facility that requires full vaccination prior to entry.

Category : Engineering and Technology

Subcategory: Information Security

Experience: Manager and Professional

Full Time/ Part Time: Full Time

Posted Date: 2022-10-04

VMware Company Overview: At VMware, we believe that software has the power to unlock new opportunities for people and our planet. We look beyond the barriers of compromise to engineer new ways to make technologies work together seamlessly. Our cloud, mobility, and security software form a flexible, consistent digital foundation for securely delivering the apps, services and experiences that are transforming business innovation around the globe. At the core of what we do are our people who deeply value execution, passion, integrity, customers, and community. Shape what's possible today at http://careers.vmware.com.

Equal Employment Opportunity Statement: VMware is an Equal Opportunity Employer and Prohibits Discrimination and Harassment of Any Kind: VMware is committed to the principle of equal employment opportunity for all employees and to providing employees with a work environment free of discrimination and harassment. All employment decisions at VMware are based on business needs, job requirements and individual qualifications, without regard to race, color, religion or belief, national, social or ethnic origin, sex (including pregnancy), age, physical, mental or sensory disability, HIV Status, sexual orientation, gender identity and/or expression, marital, civil union or domestic partnership status, past or present military service, family medical history or genetic information, family or parental status, or any other status protected by the laws or regulations in the locations where we operate. VMware will not tolerate discrimination or harassment based on any of these characteristics. VMware encourages applicants of all ages. Vmware will provide reasonable accommodation to employees who have protected disabilities consistent with local law.



Job Detail

  • Location:
    Reston, VA
  • Company:

Company Overview

VMware

Reston, VA