We Protect Bloomberg.

The Bloomberg Cyber Incident Response Team (CIRT) is responsible for the detection of cyber threats and cyber incident response across Bloomberg's diverse lines of business and vast global network.

What's The Role?

The Bloomberg CIRT is seeking a new member of its team to expand our security operations, incident response, and threat intelligence capabilities.

This function is considered to be a key pillar in our security design. We are looking for a motivated information security professional who has both demonstrated experience and a passion for these disciplines.

Ideally, you will have proven abilities and experience in one of these areas. We can provide the opportunity for you to apply current skills and develop new ones.

The CIRT is an open and collaborative environment where members work together to identify and address the latest in cyber security threats and attacks facing the company.

As a member of the CIRT, you will be working with the latest cyber detection and defense technologies to address the dynamic and ever-changing world of cyber-attack detection and defense.

We'll Trust You To:

• Serve as a contact point for suspicious and malicious events escalated by CSOC.
• Review and analyze technical components of malware and attacks while developing and refining detection criteria.
• Review security events and data sources to develop and refine detection criteria.
• Review and analyze raw network captures and network flow data to identify malicious and suspicious behaviors/signatures.
• Perform deep host and network level analysis in support of Incident Response.
• Create methods and tools to detect suspicious and malicious events occurring on our networks and systems.
• Produce/maintain documentation and standard operational procedures.

You'll Need To Have:

• Understanding of privilege escalation, persistence, and lateral movement techniques.
• Knowledge of common malware and exploit tools/techniques.
• Understanding of host and network Incident Response processes, tasks, and tools.
• Grasp of enterprise network security controls and defenses.
• Experience with malware and attacker techniques leveraged in enterprise environments.
• Static and dynamic analysis systems techniques and technologies.
• Strong scripting and automation skills.
• Experience with Windows, Linux, and Mac operating systems.

If That Sounds Like You:

Apply - if we believe you're a good match, we'll get in touch to let you know next steps.

Bloomberg is an equal opportunity employer, and we value diversity at our company. We do not discriminate on the basis of race, religion, color, national origin, gender, sexual orientation, age, marital status, veteran status, or disability status.