Edtech.com's Summary

Elsevier Inc. Company is hiring a Security Engineer III. The role involves assisting in incident response investigations by analyzing, triaging, scoping, containing, and guiding remediation of security incidents while identifying root causes and maintaining confidentiality. The engineer will coordinate responses with security teams, develop incident response procedures, and keep current on emerging security threats.

Highlights

Assist in scoping security incidents and identifying indicators of attack and compromise.
Analyze incident data using threat analytics tools.
Communicate recommendations based on security incident analysis.
Coordinate responses to incidents with security and consulting teams.
Develop and implement runbooks and techniques for incident response.
Perform security triage and analysis on endpoints, servers, and network infrastructure.
Possess skills in automation with PowerShell, Python, Java, or similar languages.
Experience with Linux and/or Mac administration, network or systems administration.
Knowledge of security technologies, cloud providers, and multi-cloud/hybrid deployments.
Preferred certifications include CISSP, CISM, SANS, GIAC, ethical hacking, or security risk assessment.
U.S. National Base Pay Range: $70,200 - $117,100, eligible for annual incentive bonus.
Benefits include comprehensive health coverage, 401(k) match, wellness programs, disability and life insurance, family benefits, and paid time off.
Support for large, complex, geographically distributed enterprise environments.

Security Engineer III Full Description

This is a Hybrid Role located in our Philadelphia Tech Hub. Must be able to work in Philadelphia multiple times per week.

Are you considering a new role in Cyber Security and want to work in a company that is helping to change the world? Consider joining an organization serving the global scientific research community, supporting the brightest minds on the planet.

Are you a collaborative Incident Response Engineer looking to work for a mission driven global organization?

About the role, Elsevier is expanding its Global InfoSec Security Incident Response team. As a Security Incident Response Engineer, you will play a crucial role in our internal security support team, assisting with incident response investigations.

This team is entrusted with analyzing, triaging, scoping, containing, and providing guidance for remediation, as well as determining the root cause of security incidents. This team also is empowered by collecting and analyzing security incident-related data to identify indicators of attack and compromise.

Responsibilities:

Assisting in scoping security incidents and identifying indicators of attack and compromise.
Analyzing incident data from threat analytics tools.
Communicating recommendations and guidance based on security incident analysis.
Coordinating responses to security incidents with other security and consulting teams.
Developing, documenting, and implementing runbooks, capabilities, and techniques for Incident Response.
Performing security triage and analysis on endpoint, server, and network infrastructure.
Conducting activities necessary for immediate containment and short-term resolution of incidents.
Maintaining current knowledge of the threat landscape, emerging security threats, and vulnerabilities.
Investigating the root cause of complex security incidents.
Maintaining a high level of confidentiality.

Requirements

Possess experience in cybersecurity incident response or related fields.
Proven ability to analyze, triage, scope, contain, and remediate security incidents.
Have current and extensive knowledge of security technologies, tools, and processes.
Experience with major cloud providers, including cloud security, networking, and multi-cloud or hybrid deployments.
Have current skills in automation using PowerShell, Python, Java, or similar languages.
Experience in Linux and/or Mac administration. Experience in Network Security Administration or Systems Administration.
Experience supporting large, complex, and geographically distributed enterprise environments.

Preferred certifications: CISSP, CISM, SANS, GIAC, ethical hacking/penetration tester, or security risk assessment.

Elsevier employs 10,000 people worldwide, including over 2,500 technologists. We have supported the work of our research and health partners for more than 140 years. Growing from our roots in publishing, we offer knowledge and valuable analytics that help our users make breakthroughs and drive societal progress.

U.S. National Base Pay Range: $70,200 - $117,100. Geographic differentials may apply in some locations to better reflect local market rates. This job is eligible for an annual incentive bonus.We know that your wellbeing and happiness are key to a long and successful career. These are some of the benefits we are delighted to offer:- Health Benefits: Comprehensive, multi-carrier program for medical, dental and vision benefits- Retirement Benefits: 401(k) with match and an Employee Share Purchase Plan- Wellbeing: Wellness platform with incentives, Headspace app subscription, Employee Assistance and Time-off Programs- Short-and-Long Term Disability, Life and Accidental Death Insurance, Critical Illness, and Hospital Indemnity- Family Benefits, including bonding and family care leaves, adoption and surrogacy benefits- Health Savings, Health Care, Dependent Care and Commuter Spending Accounts- In addition to annual Paid Time Off, we offer up to two days of paid leave each to participate in Employee Resource Groups and to volunteer with your charity of choice

We are committed to providing a fair and accessible hiring process. If you have a disability or other need that requires accommodation or adjustment, please let us know by completing our Applicant Request Support Form or please contact 1-855-833-5120.

Criminals may pose as recruiters asking for money or personal information. We never request money or banking details from job applicants. Learn more about spotting and avoiding scams here.

Please read our Candidate Privacy Policy.

We are an equal opportunity employer: qualified applicants are considered for and treated during employment without regard to race, color, creed, religion, sex, national origin, citizenship status, disability status, protected veteran status, age, marital status, sexual orientation, gender identity, genetic information, or any other characteristic protected by law.

USA Job Seekers:

EEO Know Your Rights.

Original Job Description

This is a Hybrid Role located in our Philadelphia Tech Hub. Must be able to work in Philadelphia multiple times per week.

Are you a collaborative Incident Response Engineer looking to work for a mission driven global organization?

Responsibilities:

Assisting in scoping security incidents and identifying indicators of attack and compromise.
Analyzing incident data from threat analytics tools.
Communicating recommendations and guidance based on security incident analysis.
Coordinating responses to security incidents with other security and consulting teams.
Developing, documenting, and implementing runbooks, capabilities, and techniques for Incident Response.
Performing security triage and analysis on endpoint, server, and network infrastructure.
Conducting activities necessary for immediate containment and short-term resolution of incidents.
Maintaining current knowledge of the threat landscape, emerging security threats, and vulnerabilities.
Investigating the root cause of complex security incidents.
Maintaining a high level of confidentiality.

Requirements

Possess experience in cybersecurity incident response or related fields.
Proven ability to analyze, triage, scope, contain, and remediate security incidents.
Have current and extensive knowledge of security technologies, tools, and processes.
Experience with major cloud providers, including cloud security, networking, and multi-cloud or hybrid deployments.
Have current skills in automation using PowerShell, Python, Java, or similar languages.
Experience in Linux and/or Mac administration. Experience in Network Security Administration or Systems Administration.
Experience supporting large, complex, and geographically distributed enterprise environments.

Preferred certifications: CISSP, CISM, SANS, GIAC, ethical hacking/penetration tester, or security risk assessment.

Criminals may pose as recruiters asking for money or personal information. We never request money or banking details from job applicants. Learn more about spotting and avoiding scams here.

Please read our Candidate Privacy Policy.

USA Job Seekers:

EEO Know Your Rights.

Let me find your next job.

Thanks - you're signed up.

Security Engineer III

Edtech.com's Summary

Security Engineer III Full Description

Information Security, Director

Chief Information Security Officer

Information Security Analysts

Information Security Analyst

Chief Information Security Officer (Remote)