TheExperian GSOC was established nearly 8years ago. Various team members havepresented at several local and national conferences and information securitygroup meetings. Current projects include a number of custom applicationintegrations, new business unit and data center integrations, creative usecases for security alerts and trend reporting, and ambitious goals for nextgeneration monitoring using Hadoop, Splunk, and open source tools.
TheExperian GSOC is a close, diverse team of professionals in 3 distinct roles:SIEM Engineers, Security Analysts, and Threat Intelligence.Theseindividuals also work closely with the vulnerability management team (includingin-house and external pen testing) and a number of othersecurity teams,technical SMEs, and business unit contacts. There is a high expectation ofexcellence as well as personality, but with excellence also comes flexibilityand opportunity.
The GlobalSecurity Operations Center is responsible for the collection, analysis, andescalation of securityevents. The GSOC is responsible for forensics analysisand investigation to determine if alerts or securityevents warrant incidentclassification. If an event is classified as an incident by GSOC staff, theGSOC is responsible for tracking the incident through final resolution. GSOCStaff will perform incident triage to include determining scope, urgency, andpotential impact, and they will identify specific vulnerabilities and makerecommendations to allow for expeditious remediation.
The Sr.Analyst takes part in the creation and steady improvement of correlation rules,security policies, processes and procedures and other department relateddocumentation. The Sr. Analyst is a leader within the organization, executingon strategic items that promote a strong information security posture.
Knowledge, Experience & Qualifications
Bachelor’sdegreepreferred, but not required