Discovery is at the centre of everything we do. Wherever you find us around the world, if you can think of a product, you can probably find it in our stores. We are part of the TJX Family which includes TK Maxx, and Homesense in Europe and the UK and across the rest of the world you will find us as TJ Maxx, Marshalls, HomeGoods, Sierra and Winners.With variety comes plenty of surprises—our environment is ever-changing, and that’s just how we like it. Every day is an opportunity to discover something new about our business, our partnerships and even something exciting about yourself. Are you ready to Discover Different?

Senior Cyber Security Analyst - Incident Response (Blue team)

Who we are 

The Cybersecurity Incident Response (CIR) team at TJX fulfills one of the most critical roles for Cybersecurity  Defense in responding to, containing, and remediating incidents and exposures throughout the organization.  CIR analysts monitor the Cybersecurity landscape to provide decision-makers timely, relevant, contextual, and actionable information in the interest of Cybersecurity Defense.  The function partners with a wide variety of teams throughout the organization to defend TJX against threats. We are looking for a motivated and experienced professional to join a team of analysts providing critical IT security operational services in Incident Response.   

What you’ll do 

As a Senior Threat Analyst, you will join a team providing incident response services and you will contribute to strategy, planning, execution, metrics, reporting, and continuous improvement.  You will use expert skills in strategic, operational, and tactical intelligence to identify trends, patterns, and emerging threats to TJX.  You will help facilitate day-to-day operations as a senior technical member of the team, and partner with peers in adjacent services (e.g., alert response, incident response, and threat actor emulation) to ensure that TJX is always well-protected.  

What you’ll need 

Our team is looking for people with a passion for cybersecurity, intellectual curiosity, and willingness to drive better solutions and get results.  We want associates that are familiar with fostering a strong collaborative environment in high-pressure situations, responding with appropriate speed and urgency to critical security issues.  You’ll need to be able to coordinate and communicate with cross-functional teams, guiding to recommended results quickly while ensuring that all available information is considered, and regularly document business-focused communications to update stakeholders from technical teams to senior executives. 

Successful Candidates will have: 

Strong experience of cybersecurity operations or cybersecurity defense experience in an enterprise setting 

Broad knowledge of concepts, technologies, and practices across multiple security domains, with emphasis in cybersecurity incident response, disaster recovery, and business continuity 

Experience in analyzing, gathering intelligence on, and documenting threat group activities; demonstrated understanding of remediation and countermeasures for cybersecurity threats, common vulnerability disclosures, and common types of data breach incidents 

Familiarity with common sources (closed and open), threat information platforms and integration, and threat hunting packages used to develop threat intelligence 

Familiarity with the NIST Cyber Security Framework (CSF), common security controls and their purposes, and technologies that supply those controls 

Ability to collaborate, influence and coach a geographically distributed work group; and strong relationship management skills to include stakeholders, and holding team members across multiple levels accountable for commitments 

Highly developed verbal and written communication skills (including an excellent ability to brief) at multiple levels, from analysts to executives; Ability to work up and down the organization; and the ability to influence others to achieve results through building & maintaining partnerships 

Ability to work effectively in a fast paced, demanding and fluid environment, remaining calm under pressure, and demonstrating excellent conflict management skills 

Preferred Qualifications 

Bachelor’s degree or equivalent experience in Cyber Security, Information Technology, Information Assurance, or a related field 

Significant experience with security detection and response technologies (SOAR, SIEM, and sources of security data) 

Security certifications, especially those with a focus on threat intelligence and hunting (GSOC, GCIA, GCIH, etc.) 

Direct experience in other operational cybersecurity fields (e.g., experience in a Security Operations Center, incident response, and/or other cybersecurity operations practices) 

Join us and Discover Different at TJX, click here to learn more. 

Come and Discover Different at TJX. From opportunity and teamwork to growth, we think you’ll find that it’s so much more than a job. When you’re a part of our global TJX family, you have the full support of a diverse, close-knit group of people dedicated to finding the greatest deals and fantastic style. Best of all? They have a lot of fun doing it.

We care about our culture, but we also prioritise the important things like competitive salaries, solid benefits and plenty of room to grow in your role. It’s our way of empowering you to make your career here.
                          
We consider all applicants for employment without regard to age, disability, gender, gender reassignment, marriage and civil partnerships, pregnancy and maternity, race, religion or belief and/or sexual orientation.