Senior Cloud Security IR Analyst (VP)
State Street
- Kilkenny
- Permanent
- Full-time
- Ensure the security of State Street by delivering exceptional detection and response capabilities in public cloud environments
- Design and implement incident response capabilities for cloud, including to support triage, investigation, evidence collection, containment, and remediation
- Directly deliver tactical capability enhancements, partner with internal engineering teams and vendors on large-scale capability development
- Plan and lead tabletop exercises and hands-on response simulations to assess and develop response capabilities
- Deliver customised training and awareness programs to key operational teams on incident response techniques for relevant cloud platforms
- Represent Security Operations on strategic cloud projects, providing input and assistance around incident readiness, incident response, and other operational security concerns
- Deep expertise in cloud security, specifically infrastructure platforms such as AWS and Azure, and common enterprise SaaS applications
- Exposure to security incident response, specifically incidents involving cloud infrastructure and SaaS applications
- Experience with cloud native security capabilities and features (e.g., GuardDuty, Sentinel, CloudTrail etc), common enterprise security tools (SIEM, EDR, etc), and cloud-specific security tools (e.g., CSPM)
- Experience developing and deploying tools and capabilities which enable threat detection or response
- Significant experience securing AWS, and preferably at least one other cloud infrastructure platform
- Strong foundational security knowledge, with specific expertise in threat detection, incident response, threat hunting, or similar
- Understanding of current security threats and other challenges, as well as frameworks like MITRE ATT&CK
- Familiarity with common enterprise security tools, specifically SIEM, EDR, and NSM tools
- Experience with scripting, system integration, and light development (e.g., Python, PowerShell, other scripting)
- Experience managing technology projects including solution design, deployment, and enhancement
- Exceptional communication and presentation skills (verbal and written), a collaborative approach, and ability to influence and build partnerships with diverse stakeholders
- A track record of succeeding in distributed, international teams
- This is a role for an experienced security professional, expected to have 7+ years of relevant security experience
- Qualified candidates will have direct experience securing cloud infrastructure in AWS, and preferably hands-on experience of cloud incident response
- Strong experience with cloud infrastructure is essential (either AWS or Azure)
- Experience planning and executing tabletop exercises and response simulations would be beneficial
- Experience developing and delivering technical training would be beneficial
- A degree is not required for this role, but a qualification in information security or information systems may be beneficial
- Relevant cloud security or IR certifications would be beneficial (e.g., CSA CCSK, GIAC GCFR / GCIH / GCFA), as would certifications from AWS, Microsoft, or other key cloud providers
- This role may be filled in Ireland (Dublin or Kilkenny preferred, or remote), Poland (Krakow) or United States (MA preferred, or remote in EST or CST timezones).
- This is primarily a strategic role rather than operational, however occasional participation in an on-call rotation may be required to support relevant work by other teams