Join Eaton’s Information Technology team and help positively impact our business through leading technologies, exciting and challenging enterprise projects and new platforms. We are currently seeking a Senior Cyber Security Incident Response Analyst for our Architecture, Governance, and Security (AGSCOE) team. The lead analyst will identify, contain, and eliminate cyber threats or incidents as part of Eaton’s Cyber Security Incident Response Team (CSIRT), leveraging advanced tools and techniques. You will play a key role in the Prevent, Detect, Respond strategy to protect Eaton’s intellectual property and brand in a highly complex, global, multi-technology, regulated and diversified business environment. Making what matters work at Eaton takes the passion of every employee around the world. We create an environment where creativity, invention and discovery become reality, each and every day. It’s where bold, bright professionals like you can reach your full potential—and where you can help us reach ours. In this role, as a Lead Cyber Security Incident Response Analyst, you will: Work alarms, cases or incidents from the Level 1/2 SOC analysts, perform in-depth analysis and triage of threat activity Leads ITSM processes (Change, Request, Incident, Problem management) on technical IT systems at the component level Lead Threat Hunting activities based on emerging, behaviors, IOCs or vulnerabilities Perform investigation and escalation for complex or high severity security threats or incidents Coordinate evidence/data gathering and documentation and review Security Incident reports Develop, Refine and maintain incident and alarm rules to focus detection operations Conduct Detailed forensic examination and analysis of computers, hard drives and digital media Lead forensic collections and searching for e-discovery and litigation matters Creates and Champions operating procedures to improve efficiency and effectiveness of incident response, e-discovery, internal investigations, intel and/or penetration testing Provides subject matter expertise to address advanced threats and/or security issues, including developing and executing on remediation, detection and prevention Leads or SME on project tasks to enhance CSIRT capabilities Enabling Actions: Digital Forensic Analysis Works on multiple projects and remediation activities simultaneously Participates in management and design of security and architectural models for IR tools Creating and Championing technical documentation and standard operating procedures Create and Champion remediation plans Raise awareness and provide training to end users Serve as an escalation resource and mentor for other analysts Qualifications Basic (Minimum) Qualifications: Bachelor’s Degree from an accredited university is required. Minimum 5 years of cyber security experience is required This position requires use of information or access to hardware which is subject to the International Traffic in Arms Regulations (ITAR). All applicants must be U.S. persons within the meaning of ITAR. ITAR defines a U.S. person as a U.S. Citizen, U.S. Permanent Resident (i.e. ‘Green Card Holder’), Political Asylee, or Refugee No relocation benefit is being offered for this position – only candidates residing within a 50 mile radius of Beachwood, OH, Raleigh, NC, Houston, TX, Moon Township, PA, or Southfield, MI will be considered. Must be legally authorized to work in the United States without sponsorship. Preferred Qualifications: Bachelor’s degree in a technical discipline such as: B.E / BTech / MCA / Equivalent (EITC) or B.S. Comp Sci / Mathematics / Engineering / Equivalent Understanding of forensic, endpoint and network security technologies 5+ years of experience in creating customized detection signatures and alerts for enterprise monitoring tools. 5+ years of experience in conducting forensic examinations for internal investigations or e-discovery matters 5+ years of experience in correlating events from multiple sources to detect suspicious and/or malicious activity. Understanding of Cyber Security with relevant work experience and/or relevant certifications. Understanding of common threats, penetration/intrusion techniques and attack vectors. Working knowledge of a broad range of current IT platforms and technologies. Strong communication and writing skills Strong analytical and problem-solving skills Eaton also considers qualified applicants regardless of criminal histories, consistent with local laws. To request a disability-related reasonable accommodation to assist you in your job search, application or interview process, please call 412-893-3600 or send an email to: AccommodationsForApplying@Eaton.com What you will get from us Eaton’s mission is to improve the quality of life and the environment through the use of power management technologies and services. We provide sustainable solutions that help our customers effectively manage electrical, hydraulic and mechanical power – more safely, more efficiently and more reliably. Making what matters work at Eaton takes the passion of every employee around the world. We create an environment where creativity, invention and discovery become reality, each day. It’s where bold, bright professionals like you can reach your full potential—and where you can help us reach ours. Eaton’s 2020 revenues were $17.9 billion, and we sell products to customers in more than 175 countries. We have approximately 85,000 employees. We make work exciting, engaging and meaningful for our employees through our dedication to tackling some of the toughest power management challenges on the planet and by never losing sight of what matters. Our culture is built on a strong commitment to practicing our core values and supporting our employees with the tools they need to succeed. We pledge to always foster a diverse and inclusive environment, including inclusion resource groups that bring together employees who share a common purpose, interest or background. In the past year, our company has received top employment recognition by the Human Rights Campaign and almost fifty percent of our Board of Directors represented diverse groups. When we embrace the different ideas, perspectives and backgrounds that make each of us unique, we — as individuals and as a company — are stronger. We have demonstrated our passion for sustainability with the recent announcement of cutting carbon emissions from the company’s operations by at least 50 percent by 2030. We are ethical, passionate, accountable, efficient, transparent and committed to learning. We are confident we can deliver on our promise to improve the quality of life and the environment because of the attributes that our employees embody. We are committed to ensuring equal employment opportunities for all job applicants and employees. Employment decisions are based upon job-related reasons regardless of an applicant's race, color, religion, sex, sexual orientation, gender identity, age, national origin, disability, marital status, genetic information, protected veteran status, or any other status protected by law. Job: Information Technology Region: North America – US/Puerto Rico Organization: Corporate Sector Job Level: Individual Contributor Schedule: Full-time Is remote work (i.e. working from home or another Eaton facility) allowed for this position?: No Does this position offer relocation?: No Travel: Yes, 10 % of the Time