SECURITY OPERATIONS CENTER (FUSION CENTER INCIDENT HANDLING) – L2 INCIDENT HANDLER

About Nuspire:                                                                       
Nuspire is a leading managed security services provider (MSSP) founded over 20 years ago to revolutionize the cybersecurity experience by taking an optimistic and people-first approach. Our deep bench of cybersecurity experts uses world-class threat intelligence as part of a Fusion Center to detect, respond, and remediate advanced cyber threats.

Position Description:

The L2 Incident Handler performs in-depth computer security investigations and required actions per the documented incident response lifecycle. This position requires moderate knowledge in areas including security threats and tools, incident investigation, operating systems, and networking,

As a L2 Incident Handler, you will be responsible for monitoring, detecting and responding to security events and incidents to determine root cause analysis.  You will be expected to function as a shift lead and help mentor and coach L1 incident handlers on investigative techniques and investigation processes.  You will gain technical knowledge across attack scenarios and gain experience across multiple security and technology platforms. This opportunity is in a 24x7x365 environment, requiring availability for all shifts including nights, weekends and holidays.

Responsibilities:

• Conduct triage/categorization of potential Events and Incidents
• Conduct initial evidence collection, case creation, and coordination/hand-off to other teams as necessary
• Conduct full investigations and escalate to higher tiers as necessary
• Respond in a timely manner (within documented SLA and Run Book) to support tickets.
• Contribute to Incident Handling documentation such as standard operating procedures, playbooks, briefings and executive reports
• Utilize SIEM for detection and investigation of security events and incidents
• Utilize case management tools to document and track investigations
• Perform threat mitigation as required

Minimum Qualifications:

• This position requires at least 2-5 years of security experience
• Moderate incident investigation and response experience
• Moderate knowledge of networking concepts (TCP/IP, Routing, Switching)
• Moderate knowledge of network defenses such as firewalls, IDS/IPS, Proxies
• Moderate experience with scripting
• Moderate knowledge of operating systems such as Windows, Linux, Mac, Unix
• Moderate knowledge of common TCP/IP protocols, OSI Layers 1-7
• Moderate knowledge of common attack vectors
• Moderate knowledge in working in SIEM and EDR platforms
• Familiarity of audit requirements and controls (PCI, HIPAA, SOX, etc)

Preferred Skills:

• Ability to review packets with tools such as Wireshark and TCPdump
• Understanding of MITRE ATT&CK and Cyber Kill Chain frameworks
• Ethical hacking/penetration testing experience
• Moderate understand of different cryptographic algorithms
• Experience in detect and response positions where isolation and containment procedures were use

Education/Certifications/Training Required:

• Bachelors’ Degree in Computer Science, Information Security Assurance, or equivalent experience

Education/Certifications/Training Preferred:

• GIAC, GCIH, GMON, OSCP
• CCNA, CCNP
• CISSP

Work conditions/environment:

• Great experience and growth with a global leader in managed security and network services
• Recognized in Top 25 list of MSSPs according to MSSP Alert
• Locations in: Commerce Twp., MI – Walled Lake, MI – Centennial, CO
• Nuspire provides a top work environment, as recognized by Crains Detroit, Golden Bridge "Best and Brightest," Corp! Magazine and The Detroit News.
• Full benefits including but limited to: 6 different Blue Cross Medical HMO and PPO Options, Mutual of Omaha Dental, Vision, Short-term and Long-term disability, Life Insurance, 401k and Monthly PTO accrual from your first day of employment, along with many opportunities to earn additional PTO through monthly employee awards and participation in ‘Nuspire Good Time’ Events.
• ‘Nuspire Good Time’ events 2x per month to build team cohesion.
• Nuspire is an Equal Opportunity Employer

Awards & Recognition

• MSSP Alert listed Nuspire in the Top 30 of their Top 200 MSSPs of 2019
• Best & Brightest Places to Work in Metro Detroit 8-time Winner 2011, 2014 – 2020
• Best & Brightest Places to Work National 4-time Winner 2011, 2017 - 2019
• Cyber Security Excellence Award Winner for Best Cyber Security Company 2017 - 2019
• Gartner Inc. included Nuspire in “2010 & 2011 Magic Quadrant for MSSPs, North America”
• Selected as a “Top Workplaces” winner in 2009, 2010, 2011 and 2015
• INC Magazine “One of America’s Fastest-Growing Private Companies”
• Nuspire was highlighted as a "Michigan's key IT story” in its 'Upper Hand' commercials featuring Jeff Daniels.
• com Tech Culture Award, 2016
• Corp! Magazine’s ‘Economic Bright Spot’ winner, 2017

About Nuspire Employee Culture:
Nuspire has signed managed services solutions contracts in South America, Europe and Asia while continuing to expand its network operations centers and data centers in North America.  This continued growth over 20 consecutive years allows employees to have constant opportunities to expand their role and responsibilities within the organization.

At the core of Nuspire's business model is its emphasis on the human component of business. Nuspire provides network management, monitoring, and security as a service to large organizations and the people, expertise, and experience are critical to our success.  This ideal is not only reflected in how Nuspire delivers services to its customers but also in how it treats its employees. The culture is focused on building team cohesion and employee career growth through a blending of traditional programs and unique outside of the box experiences.

Nuspire strives to be an industry leader; the employees it hires have the drive and talent to be leaders in their field. Nuspire's employee culture reinforces these ideals; rewarding excellence while providing a unique and exciting business environment.