Technology Risk - Security Incident Response Team - Data Security Incident Response Team Analyst

  • Competitive
  • Dallas, TX, USA
  • Permanent, Full time
  • Goldman Sachs USA
  • 16 Oct 18

Technology Risk - Security Incident Response Team - Data Security Incident Response Team Analyst

At Goldman Sachs, our Engineers don't just make things - we make things possible. Change the world by connecting people and capital with ideas. Solve the most challenging and pressing engineering problems for our clients. Join our engineering teams that build massively scalable software and systems, architect low latency infrastructure solutions, proactively guard against cyber threats, and leverage machine learning alongside financial engineering to continuously turn data into action. Create new businesses, transform finance, and explore a world of opportunity at the speed of markets.

Engineering, which is comprised of our Technology Division and global strategists groups, is at the critical center of our business, and our dynamic environment requires innovative strategic thinking and immediate, real solutions. Want to push the limit of digital possibilities? Start here.

Who We Look For
Goldman Sachs Engineers are innovators and problem-solvers, building solutions in risk management, big data, mobile and more. We look for creative collaborators who evolve, adapt to change and thrive in a fast-paced global environment.
Goldman Sachs Technology Risk is leading threat, risk analysis and data science initiatives
that are helping to protect the firm and our clients from information and cyber security risks. Our team equips the firm with the knowledge and tools to measure risk, identify and mitigate threats and protect against unauthorized disclosure of confidential information for our clients, internal business functions, and our extended supply chain.
SECURITY INCIDENT RESPONSE TEAM (SIRT) supports and enables a comprehensive technical Cyber Defense program for the firm while increasing awareness of current and potential Cyber Threats. Works across the organization to operate efficiently, provide technical
investigative support and mitigate threats to the firm.
Goldman Sachs is actively searching for a Technology Security Incident Response Analyst. In this position you will be accountable for leading major incident management calls, and help to gather technical resources who can re-mediate the issue. The incident response Analyst will also provide business impact updates to Technology and Business leadership as required (in verbal and written form). Another key component of the incident response Analyst function is to collect relevant incident related statistics and publish operational health metrics to senior leadership and others on a regular basis. This includes but is not limited to incident duration, root cause analysis and follow-on preventative/corrective action monitoring. The incident response Analyst may also serve as a single point of contact for major security events.

• Develop and maintain strong business and technology relationships, becoming a trusted partner to these groups.
• Lead SIRT tabletop exercises across various internal Divisions.
• Handles moderate to complex incidents including significant events and Sr. Leadership communications.
• Participate in the "follow-the-sun" model to assess detections including malware and data leakage.
• Identify opportunities for tuning our detection tools and create policies to tune tolls such as Vontu and SPLUNK
• Communicate risk and other security incident themes and develop recommendations for resolution.
• Develop reporting with key focused messages to enable constituency to understand their risk position.
• Ensure that technology security incidents are documented clearly and that realistic remediation plans are developed; follow up on those remediation plans.
• Investigate and resolve systemic issues
• Conduct triage on DLP (Data Loss Prevention) cases as well as User Reported data security incidents
• Conduct triage on Insider Threat cases
• Work collaboratively in a global follow-the-sun cyber defense model
• Convey complicated technical analysis to senior management via investigation synopses, graphical depictions of attacks, and comprehensive presentations
• Ability to promote a team environment
• Manage any other assigned duties as required.

• Strong English verbal and written communication skills.
• Ability to multi-task and prioritize work effectively.
• Highly motivated self-starter.
• Technology professional with cyber security technical skills (e.g.: lite coding, Vontu, SQL commands, SPLUNK queries)
• Responsive to challenging tasking.
• Ability to work in dynamic and high pressure situations.
• Attention to detail
• Ability to document and explain technical details in a concise and understandable manner.
• Strong sense of ownership and driven to manage tasks to completion.
• Knowledge of Corporate Risks, IT Controls and other regulations.
• Basic understanding of GDPR (General Data Protection Regulation)

Preferred Qualifications
• Bachelor of Science in Computer Science, System/Computer Engineering, Cyber-Security, or Information Security is preferred. Bachelors of Science/Arts in Forensic Computing, System/Computer Engineering, Data Science, Engineering, Operations Research, or Decision Science will be considered.
• Ability to work independently as well as in a team environment, demonstrating creativity and an ability to check work conscientiously for errors and make decisions based on priorities, time constraints and risks.
• Experience writing professional documents both for internal and external purposes as well as being comfortable with presenting to senior leadership and often delivering a tough message
• Experience with DLP detection tools such as Vontu or Proofpoint
• Experience with SPLUNK would be a plus.
• Experience with Tableau would be a plus.
• Minimum of three (2) years of additional work experience is required.

ABOUT GOLDMAN SACHS The Goldman Sachs Group, Inc. is a leading global investment banking, securities and investment management firm that provides a wide range of financial services to a substantial and diversified client base that includes corporations, financial institutions, governments and individuals. Founded in 1869, the firm is headquartered in New York and maintains offices in all major financial centers around the world.

© The Goldman Sachs Group, Inc., 2018. All rights reserved Goldman Sachs is an equal employment/affirmative action employer Female/Minority/Disability/Vet.