Bridgestone Americas, Inc.

  • Information Security Incident Response Lead

    Employee Type
    Regular Full-Time
    Degree Preferred
    4 Year Degree
    Requisition ID
    2019-168132
    Posted Date
    9/16/2019
    Location
    US-TN-Nashville
    Zip Code
    37201
    Functional Area
    Information Technology
    Category
    Information Technology
  • Overview

    Nashville, Tenn.-based Bridgestone Americas, Inc. is the U.S. subsidiary of Bridgestone Corporation, the world’s largest tire and rubber company. Bridgestone Americas and its subsidiaries develop, manufacture and market a wide range of Bridgestone, Firestone and associate brand tires to address the needs of a broad range of customers, including consumers, automotive and commercial vehicle original equipment manufacturers, and those in the agricultural, forestry and mining industries. 

    The companies are also engaged in retreading operations throughout the Western Hemisphere and produce air springs, roofing materials, and industrial fibers and textiles. The Bridgestone Americas family of companies also operates the world’s largest chain of automotive tire and service centers. 

     
    Guided by its global corporate social responsibility (CSR), commitment Our Way to Serve, Bridgestone embraces its responsibility as a global leader by striving to improve the way people move, live, work and play.

    Position Summary

    The Incident Response (IR) Lead is part of the Threat & Vulnerability Management Team supporting the broader Information Security and Compliance organization. The IR Lead is responsible for leading the in-depth investigation of security related incidents including analyzing networks, hosts and data to determine attack vectors, establish a timeline of activity, and identify the extent of the compromise.

    The IR Lead should be able to work effectively with minimal support from management and be able to coordinate the IR related activities of other teammates. The IR Lead will be responsible for leading Incident Response Investigations from start to finish.

    Responsibilities

    • Lead incident response activities through forensic investigations, containment of security incidents, and provide guidance on long term remediation recommendations.
    • Investigate potential data breaches and malicious activity leveraging forensics tools; analyze Windows, Linux, and Mac OS X systems to identify Indicators of Compromise (IOCs); examine firewall, web, database, and other log sources to identify evidence of malicious activity.
    • Evaluate the security program, technologies, controls, and business environments; and provide recommendations and develop enhancements.
    • Work with other analysts and direct incident response activities including tracking and logging
    • Coordinate with leadership team(s) on incident activities including the CISO, CIO, Legal, HR and Communications and other related business units.
    • Assist with developing Information Security Plans, Policies and Playbooks, specifically those related to Incident Response.
    • Coordinating IR Table Top exercises and simulations.
    • Provide recommendations on solutions to help manage information security risk.
    • Track emerging security practices and contribute to building internal processes and improving response capabilities.
    • Stay abreast of the current industry trends and related implications.

    Qualifications

     

    • Bachelor’s Degree in Computer Science, Information Security, or other relevant areas.
    • Minimum of 5-7 years of incident response or digital forensics experience.
    • Demonstrated expert understanding of the life cycle of network threats, attacks, attack vectors, and methods of exploitation with an understanding of intrusion tactics and techniques.
    • Knowledge of TCP/IP Protocols, network analysis and network/security applications, including log and network traffic capture analysis.
    • Experience with EnCase, FTK, SIFT, Volatility, Splunk, Magnet, ELK/Logstash, WireShark, Carbon Black, or other open source forensic/log analysis/network analysis tools.
    • Knowledge of industry standard frameworks – NIST, ISO, HIPAA, PCI.
    • Self-motivated and comfortable working both independently and as part of a team.
    • Strong interpersonal communication skills (verbal & written); ability to work across business functions including Legal, HR, and Communications teams.
    • Aptitude to learn technical concepts, and ability to manage multiple tasks and projects.

     

    Preferred Qualifications:

    • Advanced degree or Industry certifications such as CISSP, Ethical Hacking, GCFE, or CIH
    • Candidate should be able to demonstrate additional knowledge and experience in the field of information security.

    Bridgestone is proud to be an Equal Employment Opportunity / Affirmative Action employer. It is our policy to consider for employment all individuals regardless of age, color, national origin, citizenship status, physical or mental disability, race, religion, gender, sex, sexual orientation, gender identity and/or expression, genetic information, veteran status, or any other characteristic protected by federal, state or local law.

     

    Employment Eligibility

    If hired, a Form I-9 Employment Eligibility Verification must be completed at the start of employment. Temporary work authorization or the need for sponsorship may disqualify you from employment.

    Apply/Socialize Options

    Sorry the Share function is not working properly at this moment. Please refresh the page and try again later.
    Share on your newsfeed

    Connect With Us!

    Not ready to apply? Connect with us for general consideration.