Share this Job

Lead Analyst, Incident Response

Date Posted: Jul 21, 2019

Location: Cary, NC, US, 27513

Company: MetLife

Job Location: United States : North Carolina : Cary  


Role Value Proposition: 

IT Risk & Security Lead Analyst will provide key subject matter expertise as it relates to Global Cyber Security Incident Response and is responsible for managing cyber security incidents globally while providing technical expertise to global incident response associates to help manage, identify, remediate, and mitigate cyber security incidents.


Key Responsibilities:

  • Review, triage, escalate, and respond to security events and incidents while analyzing various log, network, malware, forensic, and open source information to validate security threats, recommend appropriate countermeasures, and assess the impact of incidents.
  • Maintain awareness of emerging threats, especially those targeting the financial services industry.  This position requires self-motivation, a strong willingness to learn, and passion for the information security field.
  • Perform proactive engagement (threat hunting) in order to identify potential threats to the environment and its customers and stays abreast of existing and developing threats against MetLife and our industry and analyze various log, network, malware, forensic, and open source information to validate security threats, recommend appropriate countermeasures, and assess the impact of incidents.
  • Partner with global working teams, gather the security requirements and recommend security products, services and/or procedures to enhance productivity and effectiveness and partner with other teams and vendors on the suite of tools the Incident Response team uses to include the Security Information and Event Management.
  • Supports internal investigations by performing data and hard drive forensics, and other investigative techniques and conduct computer and mobile device forensic examinations, including preservation, acquisition, and analysis of digital evidence


Essential Business Experience and Technical Skills:



  • Bachelor’s degree in computer science, information systems or related field, or equivalent work experience.
  • Candidate must have 5+ years of combined IT and Cyber Security related work experience.
  • Strong understanding of Windows operating systems and command line tools, network protocols, TCP/IP fundamentals, and security infrastructure and scripting and development experience for analysis and automate repeatable processes.
  • Broad understanding of multiple forensic platforms and tools – EnCase, FTK, X-Ways Forensics, Volatility, Sleuthkit, BlackBag tools, and various Open Source forensic tools.
  • Experience with state if the art Security Information and Event Management (SEIM) systems and a wide range of security tools  (End point, DLP, IDS, AV…) used by incident response teams




  • Strong experience analyzing raw log files (i.e. firewall, IDS, PCAP, system logs), performing data correlation.
  • Experience using SIEM or other log management tools.
  • Relevant industry certifications such as CISSP, CCNA-Security, Security+, GIAC, PMP, LEAN and Six Sigma are desire.Understanding of evidence handling and chain-of-custody procedures








At MetLife, we’re leading the global transformation of an industry we’ve long defined. United in purpose, diverse in perspective, we’re dedicated to making a difference in the lives of our customers.  #LI-WRAPJOB



MetLife is a proud equal opportunity/affirmative action employer committed to attracting, retaining, and maximizing the performance of a diverse and inclusive workforce. It is MetLife's policy to ensure equal employment opportunity without discrimination or harassment based on race, color, religion, sex (including pregnancy, childbirth, or related medical conditions), sexual orientation, gender identity or expression, age, disability, national origin, marital or domestic/civil partnership status, genetic information, citizenship status, uniformed service member or veteran status, or any other characteristic protected by law.

MetLife maintains a drug-free workplace.

For immediate consideration, click the Apply Now button. You will be directed to complete an on-line profile. Upon completion, you will receive an automated confirmation email verifying you have successfully applied to the job.

Requisition #: 108193 

Nearest Major Market: Raleigh