Lead Security Analyst

Описание вакансии

Lead Security Analyst

#LI-Onsite

THIS IS AN ONSITE POSITION in Austin, TX.

Who We Are:

2K Games is filled with some of the brightest minds in the game development and publishing arena, having delivered NBA2K, WWE2K, Civilization, Borderlands, and Evolve, among many other titles. In the quest to protect the integrity of our games and simultaneously create a safe and fair gaming experience for our gamers - only the best security talent can get the job done.

The 2K Information Security team consists of top-notch security specialists that protect our games on multiple platforms such as Windows, Mac, Android, iOS, and living-room consoles and ensure a secure and reliable experience for gamers across the planet.

If you’re a passionate top-tier security expert focusing on detection and response, we welcome you to join us and make a landmark difference in the gaming universe.

2K Security is looking for a motivated Lead Security Analyst for high-profile incidents, directing the team and effectively communicating with cross-team stakeholders while executing and improving the 2K Incident Response Plan. This individual will train Security Analysts on advanced incident response techniques, contribute to maturing a global Security program and help bring it to life.

When the Lead Security Analyst is not actively involved in an incident, the position will be responsible for threat hunting in our online retail environments and proactively managing IP and game leaks. The ideal candidate will have a deep understanding of cybersecurity, cloud security, and SIEM technologies to implement incident response workflows.

What You Will Do:

• Lead Investigations: Lead technical analysis and resolution of security-related incidents, including malware analysis, packet-level analysis, and system-level forensic analysis to reconstruct what may have transpired on a system.
• Threat Hunting: Conduct proactive threat hunting across our gaming and retail environments to identify adversary activity that may evade traditional security controls.
• Coordination & Communication: Coordinate incident response efforts and provide timely updates on incident status with internal stakeholders.
• Post-Incident Improvement: Conduct post-incident reviews and root cause analyses to identify areas for improvement.
• Leak Monitoring Program: Support and evolve our capabilities to detect unauthorized distribution of internal builds and confidential game information.
• Mentorship: Act as an escalation point for level I and II Analysts.

Who We Think Will Be A Great Fit:

• Three to five years of proven experience in Incident Response, Forensics, or Security Automation and Response.
• Expert in cyber incident response investigations, including containment, eradication, and remediation activities.
• Experience with the drafting post-incident reports to senior leadership to convey impact, origin, root cause, and remediation.
• Familiarity with the video game industry and the unique security challenges surrounding game development, distribution, and live services.
• Scripting experience (Python, PowerShell, Bash) automating security operations and incident response processes.
• Familiarity with common cyber security frameworks such as Mitre ATT&CK, SANS Top 20, Cyber Kill Chain, and OWASP Top 10
• Advanced Industry security certifications are preferred, such as GIAC Certified Forensic Examiner (GCFE), GIAC Certified Forensic Analyst (GCFA), GIAC Certified Incident Handler (GCIH), GIAC Certified Intrusion Analyst (GCIA), or similar.
• Travel occasionally.

As an equal opportunity employer, we are committed to ensuring that qualified individuals with disabilities are provided reasonable accommodation to participate in the job application or interview process, to perform their essential job functions, and to receive other benefits and privileges of employment. Please contact us if you need reasonable accommodation.

Please note that 2K Games and its studios never uses instant messaging apps or personal email accounts to contact prospective employees or conduct interviews and when emailing, only use 2K.com accounts.