Oracle Cloud Security Incident Response is seeking a Principal level analyst to join a global team of professionals investigating suspected security incidents. The ideal candidate is experienced in analyzing artifacts across the entire technology stack to identify, mitigate, and remediate threats to Oracle's assets. Experience with forensic investigations for Network, Hardware, Software, Cloud Services, and Applications is essential. Familiarity with commercial SIEM, EDR, AV, and Scan technologies is required, along with a solid understanding of computer forensics fundamentals.The responsibilities include:Leading investigations of suspected security incidents and collaborating across Oracle teams globally.Performing all aspects of the incident response lifecycle from containment to remediation.Developing indicators of compromise and integrating them into security tools.Analyzing forensic artifacts from Windows and Linux systems to identify threat activity.Building scripts to automate data collection and analysis tasks.Utilizing logs and host artifacts to detect reconnaissance and lateral movement.Creating timelines of attacker activity for reports.Writing technical reports and documentation.Identifying gaps in incident response coverage and improving the program.Mentoring junior analysts and developing training materials.Staying current on threat tactics and detection methods.Demonstrating strong communication skills and working remotely using various tools.
#J-18808-Ljbffr