At XPO Logistics, we're out to transform transportation logistics through technology, and our multimillion-dollar commitment to IT underscores its importance to our vision. As the Senior Analyst, Information Security, you will be part of a cybersecurity team that brings together processes and technologies to continuously monitor and improve the company's security posture. Fortune magazine named XPO as one of the most admired companies in the world and Forbes listed us as one of America's best employers. If you're looking for a growth opportunity with a company that's clearly going places, join us at XPO.
Pay, benefits and more.
We are eager to attract the best, so we offer competitive compensation and a generous benefits package, including full health insurance (medical, dental and vision), 401(k), life insurance, disability and the opportunity to participate in a company incentive plan.
What you'll do on a typical day:
Assist in conducting cybersecurity analysis, including working with an outsourced Level 1 SOC and an insourced Level 2 SOC function
Review, analyze, troubleshoot and drive issue resolution utilizing different data feeds such as SIEMs, intelligence feeds, threat detection systems, IDS/IPS, antivirus servers and vulnerability management scanners
Collaborate with the Forensics, Security Engineering and Threat and Vulnerability Management teams on investigations, incident response, forensics capabilities and processes
Partner with the broader security engineering and operations team to manage SIEM platforms, including design and engineering; develop process and program documentation as needed
What you need to succeed at XPO:
At a minimum, you'll need:
Bachelor's degree in Computer Science or a related field, or equivalent related work or military experience
2 years of quality experience and 2 years of related cybersecurity experience
Experience creating process and procedure documentation for an SOC operation
Experience with ServiceNow Sec Ops integrations with SOC processes
Data analysis, documentation and reporting experience
It'd be great if you also have:
GCIH, GCIA or other industry-related certifications
4 years of quality experience
Knowledge of SIEM technology with experience working with Splunk Enterprise Security
Familiarity with intrusion detection methodologies and techniques for detecting host and network-based intrusions, incident response and handling methodologies, computer networking concepts and protocols, industry-standard and organizationally accepted analysis principles and methods, and network security methodologies
Knowledge of the corporate cybersecurity threat landscape, cyber threats and vulnerabilities, system and application security threats and vulnerabilities, and tactics and targets of Nation State actors and APTs
Familiarity with Cloud structure and security monitoring capabilities for AWS, Azure and O365
Knowledge of fundamental SOC performance metrics, penetration testing principles, tools and techniques, and network traffic analysis methods
Be part of something big.
XPO is a leading provider of cutting-edge supply chain solutions to the most successful companies in the world. We help our customers manage their goods most efficiently using our technology and services. Our greatest strength is our global team - energetic, innovative people of all experience levels and talents who make XPO a great place to work.
We are proud to be an Equal Opportunity/Affirmative Action employer. Qualified applicants will receive consideration for employment without regard to race, sex, disability, veteran or other protected status.
The above statements are intended to describe the general nature and level of work being performed by people assigned to this classification. They are not intended to be construed as an exhaustive list of all responsibilities, duties and skills required of personnel so classified. All employees may be required to perform duties outside of their normal responsibilities from time to time, as needed.