This job listing has expired and the position may no longer be open for hire.

Senior Analyst, Information Security at XPO Logistics, Inc. in Charlotte, North Carolina

Posted in General Business 30+ days ago.

Type: Full-Time





Job Description:

Logistics done differently.

At XPO Logistics, we're out to transform transportation logistics through technology, and our multimillion-dollar commitment to IT underscores its importance to our vision. As the Senior Analyst, Information Security, you will be part of a cybersecurity team that brings together processes and technologies to continuously monitor and improve the company's security posture. Fortune magazine named XPO as one of the most admired companies in the world and Forbes listed us as one of America's best employers. If you're looking for a growth opportunity with a company that's clearly going places, join us at XPO.

Pay, benefits and more.

We are eager to attract the best, so we offer competitive compensation and a generous benefits package, including full health insurance (medical, dental and vision), 401(k), life insurance, disability and the opportunity to participate in a company incentive plan.

What you'll do on a typical day:


  • Assist in conducting cybersecurity analysis, including working with an outsourced Level 1 SOC and an insourced Level 2 SOC function

  • Review, analyze, troubleshoot and drive issue resolution utilizing different data feeds such as SIEMs, intelligence feeds, threat detection systems, IDS/IPS, antivirus servers and vulnerability management scanners

  • Collaborate with the Forensics, Security Engineering and Threat and Vulnerability Management teams on investigations, incident response, forensics capabilities and processes

  • Partner with the broader security engineering and operations team to manage SIEM platforms, including design and engineering; develop process and program documentation as needed


What you need to succeed at XPO:

At a minimum, you'll need:


  • Bachelor's degree in Computer Science or a related field, or equivalent related work or military experience

  • 2 years of quality experience and 2 years of related cybersecurity experience

  • Experience creating process and procedure documentation for an SOC operation

  • Experience with ServiceNow Sec Ops integrations with SOC processes

  • Data analysis, documentation and reporting experience


It'd be great if you also have:

  • GCIH, GCIA or other industry-related certifications

  • 4 years of quality experience

  • Knowledge of SIEM technology with experience working with Splunk Enterprise Security

  • Familiarity with intrusion detection methodologies and techniques for detecting host and network-based intrusions, incident response and handling methodologies, computer networking concepts and protocols, industry-standard and organizationally accepted analysis principles and methods, and network security methodologies

  • Knowledge of the corporate cybersecurity threat landscape, cyber threats and vulnerabilities, system and application security threats and vulnerabilities, and tactics and targets of Nation State actors and APTs

  • Familiarity with Cloud structure and security monitoring capabilities for AWS, Azure and O365

  • Knowledge of fundamental SOC performance metrics, penetration testing principles, tools and techniques, and network traffic analysis methods


Be part of something big.

XPO is a leading provider of cutting-edge supply chain solutions to the most successful companies in the world. We help our customers manage their goods most efficiently using our technology and services. Our greatest strength is our global team - energetic, innovative people of all experience levels and talents who make XPO a great place to work.

We are proud to be an Equal Opportunity/Affirmative Action employer. Qualified applicants will receive consideration for employment without regard to race, sex, disability, veteran or other protected status.

The above statements are intended to describe the general nature and level of work being performed by people assigned to this classification. They are not intended to be construed as an exhaustive list of all responsibilities, duties and skills required of personnel so classified. All employees may be required to perform duties outside of their normal responsibilities from time to time, as needed.