Job Description

Why Valvoline?

We’ve been in the car business for more than 150 years, starting with the invention of the world’s first motor oil. Today, we’re a global leader in automotive services and lubricants, driven every day by a people-centered focus on innovation and service excellence.


As we often say, it starts with all of our people — and that’s where you come in. We’re looking for humble, hungry and smart people to help us power the future of mobility. If you’re looking for a collaborative and flexible work environment that invests in your growth and success, you’ve come to the right place.


Careers for the Driven

Valvoline has a rewarding opportunity as an Incident Response Analyst. We wholeheartedly adopt a ‘never idle' mindset. We also know that outstanding service begins and ends with our employees. So, we’re looking for good people to join our team. You bring your skills, talents, and drive. We will give you a great place to work, a competitive salary and benefits, and the resources and support to develop and advance within our global company.


*Valvoline World Headquarters is in Lexington, KY, but we also invite remote candidates to apply. Ideally, we would like candidates located in nearby markets (Cincinnati, Louisville, and Nashville), but we are open to other locations.


How You’ll Make an Impact

The Incident Response Analyst works closely with the other members of the Computer Security Incident Response Team (CSIRT) to develop and implement a comprehensive information security program. This role is responsible for a broad range of tasks, including the day-to-day administration of information security tools and devices, as well as first-level and second-level support for security information and event management (SIEM); and it may include significant responsibilities for the security administration of a wide variety of IT systems across the enterprise.

In the role, you would be responsible for:

  • Monitoring the inbound alert queue, performing initial triage on security events, and appropriately resolving or escalating to successive levels.  Recording and capturing alert timelines for accurate reporting.
  • Parsing event logs generated by endpoint detection and response tools and technologies (anti-virus, data loss prevention, client-based web proxy) to detect anomalies and abnormalities.
  • Maintaining familiarity with all Valvoline security policies, procedures, and standards.  Investigate and resolve security violations by providing postmortem analysis to illuminate the issues and possible solutions.
  • Assisting team members with developing and implementing security protocols, including incident detection and prevention measures.
  • Implementing or coordinating remediation required by audits and reviews, and document exceptions as necessary.
  • Participating in security investigations and compliance reviews, as internal or external auditors requested.
  • Generating reports to monitor the status of all information security tools to ensure continued functionality and configuration integrity.
  • Identifying potential phishes and malicious email messages based on factors such as the tone of the message (sense of urgency, call to action, familiarity, authority, business email compromise), domain age, presence of malicious URLs or attachments, etc.
  • Performing basic Splunk searches.
  • Resetting passwords for impacted users.
  • Other duties and responsibilities as determined by Valvoline from time to time in its sole discretion.

What You’ll Need

  • Bachelor’s Degree in IT, Engineering, Business, Management, or related field, or equivalent work experience
  • Minimum one year of technology experience, including troubleshooting and performing root cause analysis of complex IT solutions
  • Basic experience with SOAR
  • Basic experience with SEIM (Splunk, Elastic Stack)
  • Basic experience with Endpoint Detection and Response (Forensics, Tools, Technologies, etc.), Intrusion Detection and Prevention, and Packet Capture and Analysis
  • Basic experience with Email Technologies (Spam Filters, Headers, Phishing, etc.) and Network Technologies (TCIP/IP, Basic Routing, DNS, etc.)
  • Intermediate experience with Scripting (Python, PowerShell, HTML)
  • Intermediate experience with Identity and Access Management Concepts (SSO, MFA, etc.)
  • Intermediate experience with Operating Systems (Microsoft Windows and Linux)
  • Intermediate analytical and problem-solving skills to enable effective security incidents and problem resolution.
  • Intermediate team-oriented interpersonal skills, with the ability to interface effectively with a broad range of people and roles, including vendors and IT-business personnel.
  • Intermediate verbal and written communication skills; ability to work with integrity and maturity on confidential information.
  • Must be authorized to work in the U.S. 

What Will Set You Apart?

  • Minimum one year of experience in security incident management processes & tools
  • License or certification in CISSP, CISM, CEH, Security+, Network+, CCNA, CCNP, CCNE, or SANS


Benefits That Drive Themselves

  • Health insurance plans (medical, dental, vision)
  • HSA and flexible spending accounts
  • 401(k)  
  • Incentive opportunity*
  • Life insurance
  • Short and long-term disability insurance
  • Paid vacation and holidays*
  • Employee Assistance Program
  • Employee discounts
  • Tuition reimbursement*
  • Adoption assistance*

*Terms and conditions apply, and benefits may differ depending on position.


Females and minorities encouraged to apply.


Valvoline provides equal employment opportunities to all employees and applicants for employment and prohibits discrimination and harassment of any type without regard to race, color, religion, age, sex, national origin, disability status, genetics, protected veteran status, sexual orientation, gender identity or expression, or any other characteristic protected by federal, state or local laws. Are you good at what you do? Join us.


The Company endeavors to make its recruitment process accessible to any and all users.  Reasonable accommodations will be provided, upon request, to applicants with disabilities in order to facilitate equal opportunity throughout the recruitment and selection process.  Please contact Human Resources at 1-800-Valvoline or email to make a request for reasonable accommodation during any aspect of the recruitment and selection process.  The contact information is for accommodation requests only; do not use this contact information to inquire about the status of applications.



Application Instructions

Please click on the link below to apply for this position. A new window will open and direct you to apply at our corporate careers page. We look forward to hearing from you!

Apply Online