Security DFIR Senior Analyst (AMER)
About the position
AVEVA is creating software trusted by over 90% of leading industrial companies. The Security Digital Forensics and Incident Response (DFIR) Analyst is a critical member of the Global Security Operations Team, responsible for maintaining the integrity of our comprehensive security program. This role spans the entire incident response lifecycle—from initial identification and protection through to containment, eradication, and recovery. Beyond reactive analysis, the Analyst provides strategic input for security policies, develops robust response processes, and champions security awareness. Reporting to the DFIR Team Manager, the Analyst collaborates across the wider Security Operations function and engages with staff globally to reinforce a culture of compliance and proactive security.
Responsibilities
• Proactively identifying, investigating, and hunting potential attacks and security risks on AVEVA networks and systems using various platform dashboards and threat feeds.
• Perform analysis of security events as detected by various security controls, monitoring, and recording security events in daily and weekly reports.
• Perform analysis on escalated security events, notifications, and alerts from managed Security Operation Centre (SOC).
• Supports e-discovery and forensic processes to include identification, collection, preservation, and processing of relevant incident data
Requirements
• Minimum of three years information and cyber security experience as Digital Forensics and Incident Response Analyst and Security Threat Hunting, Security Operations Centre role, IT System Administration or Network Administration.
• Bachelor's degree in information systems or equivalent work experience in relevant information and cyber security domain.
• Security certification from a recognised organisation such as ISC2, CompTIA, EC-Council, SANS Institute is as advantage.
Nice-to-haves
• Technology standard certification such as from Cisco, VMware, Microsoft is an advantage.
• Excellent technical knowledge of Microsoft Operating Systems.
• Knowledge and experience of Linux and Macintosh.
• Awareness of the Mitre ATT&CK framework and how it can be used to learn an adversary’s tactics and techniques and focus incident response.
• Experience using Security Information and Event Management (SIEM) and analysing log data sources.
• Experience with common information security management frameworks, such as International Organization for Standardization (ISO) 2700x and the ITIL, COBIT and National Institute of Standards and Technology (NIST) or Center for Internet Security (CIS) frameworks.
Benefits
• Flex work hours
• 20 days PTO rising to 25 with service
• three paid volunteering days
• primary and secondary parental leave
• well-being support
• medical
• dental
• vision
• 401K
Apply tot his job
Apply To this Job
AVEVA is creating software trusted by over 90% of leading industrial companies. The Security Digital Forensics and Incident Response (DFIR) Analyst is a critical member of the Global Security Operations Team, responsible for maintaining the integrity of our comprehensive security program. This role spans the entire incident response lifecycle—from initial identification and protection through to containment, eradication, and recovery. Beyond reactive analysis, the Analyst provides strategic input for security policies, develops robust response processes, and champions security awareness. Reporting to the DFIR Team Manager, the Analyst collaborates across the wider Security Operations function and engages with staff globally to reinforce a culture of compliance and proactive security.
Responsibilities
• Proactively identifying, investigating, and hunting potential attacks and security risks on AVEVA networks and systems using various platform dashboards and threat feeds.
• Perform analysis of security events as detected by various security controls, monitoring, and recording security events in daily and weekly reports.
• Perform analysis on escalated security events, notifications, and alerts from managed Security Operation Centre (SOC).
• Supports e-discovery and forensic processes to include identification, collection, preservation, and processing of relevant incident data
Requirements
• Minimum of three years information and cyber security experience as Digital Forensics and Incident Response Analyst and Security Threat Hunting, Security Operations Centre role, IT System Administration or Network Administration.
• Bachelor's degree in information systems or equivalent work experience in relevant information and cyber security domain.
• Security certification from a recognised organisation such as ISC2, CompTIA, EC-Council, SANS Institute is as advantage.
Nice-to-haves
• Technology standard certification such as from Cisco, VMware, Microsoft is an advantage.
• Excellent technical knowledge of Microsoft Operating Systems.
• Knowledge and experience of Linux and Macintosh.
• Awareness of the Mitre ATT&CK framework and how it can be used to learn an adversary’s tactics and techniques and focus incident response.
• Experience using Security Information and Event Management (SIEM) and analysing log data sources.
• Experience with common information security management frameworks, such as International Organization for Standardization (ISO) 2700x and the ITIL, COBIT and National Institute of Standards and Technology (NIST) or Center for Internet Security (CIS) frameworks.
Benefits
• Flex work hours
• 20 days PTO rising to 25 with service
• three paid volunteering days
• primary and secondary parental leave
• well-being support
• medical
• dental
• vision
• 401K
Apply tot his job
Apply To this Job