VMware Principal Threat Response Analyst - Opportunity for Working Remotely in Wichita, Kansas
VMware is the leader in virtualization and cloud infrastructure solutions that enable our more than
350,000 enterprise and SMB customers to thrive in the Cloud Era/A pioneer in the use of
virtualization and automation technologies. Our team of 20,000+ people working in 50+ locations
worldwide are committed to building a community where great people want to work long term by
living our values of passion, innovation, execution, collaboration, active learning and giving back. If
you are ready to accelerate, innovate and lead, join us as we challenge constraints and problem
solve for tomorrow today.
This role resides in the VMware Security Business Unit, VMware Carbon Black, which is the leader
in cloud-native endpoint protection dedicated to keeping the world safe from cyber-attacks. The
VMware Carbon Black Cloud consolidates endpoint protection and IT operations into an endpoint
protection platform (EPP) that prevents advanced threats, provides actionable insight, and enables
businesses of all sizes to simplify operations.
Job Role and Responsibilities:
This person will play a critical role on the VMware Carbon Black Managed Detection team as a
security advisor, detection engineer, and product evangelist. The Principal Threat Response Analyst
(MDR) is responsible for supporting the team’s goals as a senior member of the team by building
and supporting the processes and tools required for endpoint security monitoring, security event
triage, and incident response for VMware Carbon Black customers, including automating processes,
responding to security incidents, improving VMware Carbon Black security efficacy and establishing
new detections. The ideal candidate will possess extensive offensive and defensive security
knowledge and skills which are needed to aid with technical understanding and credibility during
active security incidents, ensuring the success of VMware Carbon Black’s Managed Detection team.
This role will lead the innovation for building new detection capabilities as needed to support
Managed Detection’s ability to detect and respond rapidly to security incidents and overall product
efficacy. As part of the Managed Detection team, the Principal Security Analyst works closely with
Threat, R&D, Security Efficacy, and Product Management to demonstrate product capability, inspire
confidence, and effectively communicate the power of VMware Carbon Black solutions.
Ability to design playbooks for responding to security incidents
Collaborate with customers and team members to develop an extensive strategy for effective
detections of malicious activity
Identify and implement new detections and detection improvements associated with an
evolving threat landscape
Provide actionable statistical analysis of widespread threat vectors across multiple, varied
Thorough understanding of the entire Incident Response process
Windows disk and memory forensics
Experience building scripts or tools to automate and improve the investigation processes
Act as a senior member of the team, providing leadership, guidance, mentorship, and
training to junior team members
Preferred Skills :
7+ years of security incident response, remediation and threat detection
Exceptional verbal communication skills in relation to technical subject matter
Demonstrated experience as an expert in endpoint, workload, kubernetes and network
Ability to talk to VMware Carbon Black customers in a comprehensive and effective manner
and/or experience in a client facing role
Experience with vSphere, vCenter, and VDI in an enterprise capacity preferred
Expert in Windows, macOS, and/or linux endpoint operating systems
Endpoint security, NGAV, EDR, and threat hunting experience
Proven technical track record with securing Windows, macOS, and linux operating systems
Static and dynamic malware analysis
Strong technical writing skills
BS/BA in IT, IS or related field of study or equivalent
FOR COLORADO-BASED CANDIDATES:
The hiring range for this position is typically $111,000.00- $200,000.00. Actual offer will be based on the individual candidate. Bonus, commission, and/or equity may be eligible for this position. Additional benefits for this position can be found at https://benefits.vmware.com/ . *Note: Disclosure of Colorado pay and benefits required per sb19-968.
This job may require the candidate to travel and/or work from a facility that requires full vaccination prior to entry.
Category : Engineering and Technology
Subcategory: Information Security
Experience: Manager and Professional
Full Time/ Part Time: Full Time
Posted Date: 2022-05-17
VMware Company Overview: At VMware, we believe that software has the power to unlock new opportunities for people and our planet. We look beyond the barriers of compromise to engineer new ways to make technologies work together seamlessly. Our cloud, mobility, and security software form a flexible, consistent digital foundation for securely delivering the apps, services and experiences that are transforming business innovation around the globe. At the core of what we do are our people who deeply value execution, passion, integrity, customers, and community. Shape what’s possible today at http://careers.vmware.com.
Equal Employment Opportunity Statement: VMware is an Equal Opportunity Employer and Prohibits Discrimination and Harassment of Any Kind: VMware is committed to the principle of equal employment opportunity for all employees and to providing employees with a work environment free of discrimination and harassment. All employment decisions at VMware are based on business needs, job requirements and individual qualifications, without regard to race, color, religion or belief, national, social or ethnic origin, sex (including pregnancy), age, physical, mental or sensory disability, HIV Status, sexual orientation, gender identity and/or expression, marital, civil union or domestic partnership status, past or present military service, family medical history or genetic information, family or parental status, or any other status protected by the laws or regulations in the locations where we operate. VMware will not tolerate discrimination or harassment based on any of these characteristics. VMware encourages applicants of all ages. Vmware will provide reasonable accommodation to employees who have protected disabilities consistent with local law.