Lead Cyber Defense Incident Responder

Become a Part of the Nike Team 

Nike does more than outfit the world’s best athletes. We are a place to explore potential, obliterate boundaries, and push out the edges of what can be. We’re looking for people who can grow, think, dream and create. We thrive in a culture that embraces diversity and rewards imagination. We seek achievers, leaders and visionaries. At Nike, it’s about bringing what you have to a challenging and constantly evolving game. 

Nike Tech brings together technology and process expertise to create value for the consumer. We deliver one-stop, integrated process and technology capabilities that enable Nike, Inc.'s businesses and brands worldwide. Our focus is on providing lean solutions that eliminate waste, maximize consumer value, and drive profitable business growth. 

The Lead Cyber Defense Incident Responder will be responsible for identifying, containing and eradicating cyber security incidents. This position uses a wide range of tools and experience to perform the incident response functions, focusing primarily on cloud security, application security and Unix/Linux operating systems. You will work closely with Incident Coordinators and will assist in defining the scope, framework and procedures to facilitate and measure successful security incident management. Further this position will be responsible for working with other Information Security staff to enhance or develop new security controls to proactively reduce further issues or provide enriched detective and reactive capabilities. Successful Lead Cyber Defense Incident Responders must be detail oriented, have exceptional organizational, written, and verbal communication skills adept at remaining calm and making good decisions under pressure, and a drive to enhance security controls.

What We're Looking For

To make it clear, we're not looking for just anyone.  We're looking for someone special, someone who has in-depth experience and clearly demonstrates these skills:
 

Experience Desired

• Solid knowledge of information security principles and practice
• Minimum five years of security monitoring experience and incident response activities; preferably within a professional services firm or similar environment
• Strong knowledge of incident response and crisis management with the ability to identify both tactical and strategic solutions using strong verbal and written communication skill
• Proven track record of creating an incident management framework and processes
• Comfortable with interfacing with other internal or external organizations regarding security policy and standards violations, security controls failure and incident response situation
• Understanding of network, desktop and server technologies, including experience with network intrusion methods, network containment, segregation techniques and technologies such as Intrusion Detection Systems (IDS) and Intrusion Protection Systems (IPS)
• Cloud security knowledge and skills; securing cloud environments as well as detecting and responding to cyber security incidents in the cloud
• Log (network, security, access, OS, application, etc.) analysis skills and experience in relation to identifying and investigating security incidents
• Proficiency with Windows, Mac OSX and Linux
• Understanding of application security and dev-sec-ops
• Coding/scripting experience (PowerShell, Python, Ruby, Java, VB Scripting etc.)
• Malware analysis, virus exploitation and mitigation techniques experience.
• The ability to learn and apply new concepts quickly
• Resolves problems independently and/or through a support team
• Knowledge of ITIL best practices and process improvements
• Ability to balance and prioritize work
• Must be trustworthy in keeping sensitive data confidential

Additional skills and qualifications preferred, but not required.

• One or more of the following professional certifications
  • Certified Information Security Professional (CISSP)
  • Global Information Assurance Certifications (GIAC)

Education and Experience

• Requires a Bachelor’s degree in computer science or related field, or equivalent work experience
• Five years of information technology experience with three years in an information security-related role