• Monitor logs, alerts, and telemetry to detect abnormal behavior and potential threats across infrastructure, applications, and cloud environments. • Perform in-depth security analysis and investigations to assess risk, determine impact, and identify root causes of security events. • Coordinate and execute incident response efforts, including containment, mitigation, recovery, and post-incident reviews. • Own and drive the vulnerability management program by identifying, prioritizing, and tracking remediation of security vulnerabilities across systems and teams. • Maintain accurate and comprehensive documentation of investigations, incidents, procedures, and findings to support transparency and operational excellence. • Contribute to company-wide security awareness by developing and delivering training, guidance, and best practices to stakeholders across the organization.

• Continuously monitor and investigate security breaches across organizational systems • Identify and mitigate vulnerabilities within CorVel systems • Stay updated with the latest IT security trends and best practices • Generate detailed reports on security metrics, attempted attacks, and breaches • Develop, review, and maintain comprehensive security incident response plans and playbooks • Advise management and senior IT staff on security enhancements • Perform security assessments, including vulnerability testing and risk analysis • Promote and support the development of company-wide security best practices • Participate in and support security audits • Foster relationships with third-party security organizations • Perform additional duties as assigned

Role Description We are currently looking for a talented Cybersecurity Analyst interested in joining our Cyber Security Incident Response team. In this role you will be investigating, responding to, and triaging threats and incidents while helping to improve our overall security capabilities. This role needs to be able to communicate and collaborate professionally with other members of the organization from end users to senior management in order to resolve these threats. Responsibilities: - Perform host/network based forensic investigations to collect and preserve evidence related to incidents - Managing incoming queues of detection alerts, threat reports and security incidents - Interact with our Managed Security Service Provider (MSSP) to investigate and resolve issues - Prioritizing and triaging competing incidents to maintain Service Level Agreements (SLA) - Managing investigations including escalation, organizing unstructured work and engaging resource teams across the company - Managing urgency and visibility to ensure timely response by all involved parties - Owning an incident for its full lifecycle, including after action reviews and follow up actions - Communication and coordination with other cyber security professionals, internal teams, and law enforcement agencies as needed to address incidents and threats - Maintain current knowledge of tools and best-practices in advanced persistent threats; tools, techniques, and procedures of attackers; and forensics and incident response - Create and maintain documentation including incident response plans, standard operating procedures, and knowledge base articles - Rotating on-call coverage Qualifications - Strong problem solving abilities that help to drive forward incidents to completion and help keep Nielsen secure - Effective communication skills for collaborating with key stakeholders, and for translating technical jargon into understandable terms - Stay current on new attack vectors, technologies, tools, and best practices as they change over time - Open mind and keen eye for details to detect anomalies and potential security issues others may overlook - A true passion for cybersecurity and a commitment to safeguarding an organization from threats Requirements - Bachelor’s degree or 1-2 years relevant cybersecurity experience preferred - Experience with Cybersecurity Incident Response, Digital Forensics, Timeline Analysis or related - Experience or knowledge of current information security solutions and technologies, including cloud, network and host based products - Effective and efficient investigative skills across multiple technologies - Excellent verbal and written communication skills including a focus on providing continuous, proactive communications to management, peers, and stakeholders while working on incidents - Ability and willingness to continually learn and hone cybersecurity skills - Cybersecurity certifications preferred (e.g. CISSP, Sec+, SANS/GIAC) - Familiarity with Python and Powershell a plus - Experience automating tasks via scripting or other tools (Tines, or similar SOAR) a plus Benefits - Remote work after training - Workplace Computer Equipment - Law benefits - 16 days of vacation after the first year - Life Insurance - Major Medical Expense Insurance - 9% Food Stamps - 13% Savings Fund - 50% Vacation Bonus Additional Information Please be aware that job-seekers may be at risk of targeting by scammers seeking personal data or money. Nielsen recruiters will only contact you through official job boards, LinkedIn, or email with a nielsen.com domain. Be cautious of any outreach claiming to be from Nielsen via other messaging platforms or personal email addresses. Always verify that email communications come from an @nielsen.com address. If you're unsure about the authenticity of a job offer or communication, please contact Nielsen directly through our official website or verified social media channels.

• Providing (tier 2 and 3) support to our customers, be part of our threat research team, collaborate with threat researches and data scientists to challenge our detection engine on a daily basis • Analyzing huge web traffic data sets (across more than 100 billions documents) to identify and block malicious traffic • Contributing to support by analyzing past attacks to strenghten our detection! • Collaborate with threat researchers to challenge and optimize DataDome real-time detection engine capabilities • Creating automates/scripts to detect outliers in our global traffic • Identifying potential attacks and add new alerts to our detection platform