Lead Security Analyst

2K•Austin, TX

7h•Onsite

About The Position

Lead Security Analyst #LI-Onsite THIS IS AN ONSITE POSITION in Austin, TX. Who We Are: 2K Games is filled with some of the brightest minds in the game development and publishing arena, having delivered NBA2K, WWE2K, Civilization, Borderlands, and Evolve, among many other titles. In the quest to protect the integrity of our games and simultaneously create a safe and fair gaming experience for our gamers - only the best security talent can get the job done. The 2K Information Security team consists of top-notch security specialists that protect our games on multiple platforms such as Windows, Mac, Android, iOS, and living-room consoles and ensure a secure and reliable experience for gamers across the planet. If you’re a passionate top-tier security expert focusing on detection and response, we welcome you to join us and make a landmark difference in the gaming universe. 2K Security is looking for a motivated Lead Security Analyst for high-profile incidents, directing the team and effectively communicating with cross-team stakeholders while executing and improving the 2K Incident Response Plan. This individual will train Security Analysts on advanced incident response techniques, contribute to maturing a global Security program and help bring it to life. When the Lead Security Analyst is not actively involved in an incident, the position will be responsible for threat hunting in our online retail environments and proactively managing IP and game leaks. The ideal candidate will have a deep understanding of cybersecurity, cloud security, and SIEM technologies to implement incident response workflows.

Requirements

Three to five years of proven experience in Incident Response, Forensics, or Security Automation and Response.
Expert in cyber incident response investigations, including containment, eradication, and remediation activities.
Experience with the drafting post-incident reports to senior leadership to convey impact, origin, root cause, and remediation.
Familiarity with the video game industry and the unique security challenges surrounding game development, distribution, and live services.
Scripting experience (Python, PowerShell, Bash) automating security operations and incident response processes.
Familiarity with common cyber security frameworks such as Mitre ATT&CK, SANS Top 20, Cyber Kill Chain, and OWASP Top 10

Nice To Haves

Advanced Industry security certifications are preferred, such as GIAC Certified Forensic Examiner (GCFE), GIAC Certified Forensic Analyst (GCFA), GIAC Certified Incident Handler (GCIH), GIAC Certified Intrusion Analyst (GCIA), or similar.
Travel occasionally.

Responsibilities

Lead Investigations: Lead technical analysis and resolution of security-related incidents, including malware analysis, packet-level analysis, and system-level forensic analysis to reconstruct what may have transpired on a system.
Threat Hunting: Conduct proactive threat hunting across our gaming and retail environments to identify adversary activity that may evade traditional security controls.
Coordination & Communication: Coordinate incident response efforts and provide timely updates on incident status with internal stakeholders.
Post-Incident Improvement: Conduct post-incident reviews and root cause analyses to identify areas for improvement.
Leak Monitoring Program: Support and evolve our capabilities to detect unauthorized distribution of internal builds and confidential game information.
Mentorship: Act as an escalation point for level I and II Analysts.

Stand Out From the Crowd

Upload your resume and get instant feedback on how well it matches this job.

Upload and Match Resume