Cyber Security Engineer

Discovery Communications is a global mass media and entertainment company. The company operates through U.S. networks; international networks; education; and other segments. It owns and operates television networks under many brand names, including Discovery, TLC, Animal Planet, Investigation Discovery, Science, Velocity, Discovery Family, American Heroes, Destination America, Discovery Life, Oprah Winfrey Network, Eurosport, DMAX, and Discovery Kids.

The Cyber Security Engineer will play a key role in supporting Discovery Communications 24x7x365 Security Operations Center (SOC). This is a technical security operations role with core focus on continuous monitoring, incident response and threat intelligence activities, utilizing internal and external resources. This role will require one to work across multiple global organizations and service providers in order to effectively monitor for suspicious activity as well as make recommendations to improve the security posture and protect the Discovery Communication brand.

* Support all aspects of Information Security Operations initiatives * Respond to day-to-day security requests from the Director of Information Security Operations and the CISO. * Monitor and analyze Intrusion Prevention Systems (IPS), Anomaly Detection Systems (ADS), Splunk/ArcSight/QRadar (SIEM) to identify security issues for remediation. * Proactively recognizes potential successful, and unsuccessful intrusion attempts and compromises thorough reviews and analyses of relevant event detail and summary information * Evaluate/deconstruct malware (e.g. obfuscated code) through open-source and vendor provided tools * Tasks other analysts to analyze the IDS and remediate security issues found * Communicates alerts to IT groups regarding intrusions and compromises to their network infrastructure, applications and operating systems * Assists with implementation of counter-measures or mitigating controls.

* Bachelor Degree from an accredited university in business or IT related discipline (may substitute with a minimum of 12 years of IT engineering and supervision experience) * 5+ years of progressive experience with increasing responsibilities within a Security Operations environment * 8+ years of IT security engineering work experience * 5+ years of security architecture experience * Security Event Information Management (SEIM) experience such as Splunk * Strong working knowledge with industry IT security tools. Experience with FireEye, RSAM, EnCase, FireEye, Yara, OllyDbg, IDA Pro a plus. * Must have a strong foundation of Network and Security skills, fundamental knowledge of Windows, Linux and Cisco operating systems, networking protocols and network traffic analysis, and information security * Subject Matter Expert-level skills in Incident Response and IDS Monitoring, Forensics, Malware Analysis * Independent tasking and project completion with little supervision is a must * Excellent analytical and problem solving skills as well as interpersonal skills to interact with users, team members and senior management; * Investigates, interprets, and responds to technical and/or complex IT security data. Demonstrated ability to work within matrixed resources in a team environment. Possesses strong organizational, time management and diplomacy skills. * Engineering related certifications, extensive experience with IT security tools, working technical knowledge of network, server, storage and desktop hardware and software * Desirable certifications include CISSP, GREM, GCIH, GCIA, CEH, CISM, GCED, GCFA, OSCP * Must have legal right to work in the United States