Company: Baker Hughes
Skills: IT - Analysis & Management, IT - Networking & Telecom, IT - Sys Admin & Support
Experience: 6 + Years
Education: Bachelors/3-5 yr Degree
Location: Houston, Texas, United States


Roles and Responsibilities

Have responsibility for many aspects of the Data Loss Prevention function of the business.

In this role, you will:
  • Lead technical aspects of digital security incident detection and response, focusing on very unstructured incidents and high-risk events
  • Specialize in network-centric analysis (NSM), host-centric analysis (live response, digital forensics), malware analysis, and / or log-centric analysis (SIEM)
  • Assist with forensic analysis in response to cyber incidents, eDiscovery, and Compliance investigations
  • Mentor and train Event and Incident Analysts as required
  • The best candidates for the role work well with other people and have strong verbal and written communication skills, a sense of diplomacy, and decision making skills to handle the often fast-paced role of an incident handler


Required Qualifications:
  • Bachelor's Degree in Computer Science or "STEM" Majors (Science, Technology, Engineering and Math) or Highschool diploma\\GED with a minimum of 6 years of equivalent experience
  • At least one industry standard forensic certifications, i.e. GCFA, CFCE, ACE, ENCE, etc.


Desired Characteristics:

Technical Expertise:
  • A minimum 6 years of professional experience in STEM related degree, Political Science/Government/International Affairs preferred
  • Greater than 1 year of experience detecting and responding to cyber intrusions in an Operations Technology environment
  • Detailed understanding of Insider Threat, Data Security, and other associated tactics
  • Experience with host based detection and prevention suites (McAfee EPO, OSSEC, Yara, MIR, Carbon Black, CrowdStrike, etc.)
  • Experience with host-centric tools for forensic collection and analysis (SleuthKit, Volatility Framework, FTK, Encase, etc.)
  • Experience with Network Forensics (FTK Enterprise)and / or Network Security Monitoring (NSM) tools (Snort, Bro-IDS, PCAP, tcpdump, etc.) and analysis techniques (alert, flow / session and PCAP analysis)
  • Strong IT infrastructure background including familiarity with the following:
  • Networking (TCP / IP, UDP, Routing)
  • Applications (HTTP, SMTP, DNS, FTP, SSH, etc.)
  • Encryption (DES, AES, RSA) and hashing algorithms (MD5, SHA-1, etc.)
  • System / Application vulnerabilities and exploitation
  • Operating systems (Windows, *Nix, and Mac)
  • Cloud technology (SaaS, IaaS, PaaS) and associated digital forensics and incident response techniques
  • CISSP, CISM or related SANs certifications preferred
  • Working knowledge of secure communication methods, including Secure Shell, S / MIME and PGP / GPG


Personal Attributes:
  • The best candidates for the role work well with other people and have strong verbal and written communication skills, a sense of diplomacy, and decision making skills to handle the often fast paced role of an incident handler
  • Strong verbal and written communication skills

Baker Hughes Company is an Equal Opportunity Employer. Employment decisions are made without regard to race, color, religion, national or ethnic origin, sex, sexual orientation, gender identity or expression, age, disability, protected veteran status or other characteristics protected by law.