Incident Response Analyst (Remote)

Incident Response Analyst (Remote)

12 Jan 2024
California, Eldoradohills, 95762 Eldoradohills USA

Incident Response Analyst (Remote)

Vacancy expired!


Please contact Meera Makam at or email for any questionsRequired Skills (top 3 to 5/ non-negotiables):
1. A degree in Computer Science or Engineering or related field with a minimum of 1-2 years dedicated to IT, IT security, and/or security infrastructure experience OR a combination of equivalent work experience and education.
2. Advanced event monitoring, analysis, response, and reporting for IT security incidents
3. Good written and verbal communication skills at different levels with the ability to articulate with both technical and non-technical audiencesDay to Day Responsibilities of this Position and Description of Project:The IR analyst will apply knowledge to protect the confidentiality, integrity, and availability of data by monitoring, declaring, responding, and escalating IT security incidents. Must have an open availability to 24x7x365 schedule changes.Responsibilities

  • Event monitoring and analysis
  • Responding and escalating IT security events and threats and vulnerabilities
  • Case management of low to high risk incidents
  • Participates in process improvement and documentation review

Qualifications
  • A degree in Computer Science or Engineering or related field with a minimum of 1-3 years dedicated to IT, IT security, and/or security infrastructure experience OR a combination of equivalent work experience and education.
  • 1-3 years dedicated IT security

Technical
  • Security Incident Handling & Response: Handle any imminent threat of current violation of an organization's security policies or standard security practices. These security incidents could include malware, ransomware, phishing, Advanced Persistent Threats, Distributed Denial of Service (DDoS) attacks, and more.
  • SIEM Management: Manage and analyze the security information and event management (SIEM) tools and services.
  • Analytics & Intelligence: Leverage analytics and intelligence gathering to identify and detect attacks as quickly as possible. Using analytics and intelligence allows the security practitioner to aggregate network and application data to prevent attacks from occurring in the future.
  • Firewall/IDS/IPS Skills: Leverage a firewall to filter network traffic and prevent unauthorized access onto the network. In addition, the security analysis must have a knowledge of Intrusion Detection Systems (IDS) and Intrusion Prevention Systems (IPS) and know how they relate to the firewall.
  • Intrusion Detection: Identify any suspicious traffic on the network as well as any security policy violations.
  • Application Security Development: Improve the security of any application by finding, and reporting vulnerabilities. In addition, the analyst must ensure testing and validate during the software development lifecycle (SDLC) so that vulnerabilities are addressed before an application is deployed.
  • Malware detection: Leverage advanced threat protection software to detect, and identify Advanced Persistent Threats (APTs) that might circumvent traditional security solutions like anti-virus, firewalls, and IPS/IDS.
  • Data Management Protection: Handle, analyze, and securely store all types of data.
  • Identity & Access Management: Monitor for abuse of access management and acceptable use.

Soft Skills
  • Communication skills: This is one of the main personal skills needed by all members of the team. Whether it is to communicate with other team members while in emergency mode, or to communicate calmly and effectively with clients, the public and executives, the ability to convey information clearly and at the appropriate level are essential in a CSIRT professional. Written communication is also important, as members need to be able to write effective policies, communicate clearly with stakeholders via emails and notices, as well as document incidents thoroughly.
  • Listening skills: The ability to pause and listen to the concerns and requests of clients as well as management is paramount when working during the resolution of an emergency. A CSIRT member who doesn't take the time to listen to fellow team members or customers, diminishes his or her ability to resolve the incident in a more effective way.
  • Tact and diplomacy: Any time professionals are asked to deal with an emergency, they might find themselves in situation where they are hard pressed for information or deal with anxious, angry customers and/or managers. The ability to calmly handle all situations with tact and diplomacy can go a long way in keeping the organization focused on what needs to be done to minimize the impact of an incident, as well as to prevent the release of information that shouldn't be public domain.
  • Teamwork: This is obvious. In an intricate group of professionals with different technical skills, experience and roles, it is important that all members are able to work well in a group, accept differences of approach, understand each other's roles and be able to support each other's functions without reserve. They also need to be able to interact with other sections of the organizations and non-technical staff, as well as recognize and accept leaders in their work group.
  • Trustworthiness and discretion: Members of a CSIRT are often made privy to highly sensitive information and need to preserve the information there are given. Members need to be able to strike the right balance between what is legitimate to divulge to stakeholders and what information should be well guarded from unnecessary disclosure.
  • Problem solving: This is one of the most important skills. Not all incidents are created equal, and professionals need to be able to adapt to changing situations, new scenarios and a variety of attacks in order to respond as quickly as possible. Strong problem-solving skills and creativity support the technical abilities of team members and allow them to face and resolve even the most unexpected situations.
  • Ability to cope with stress: Although all jobs require the ability to keep calm and collected in difficult times, this is particularly important when dealing with incident response. A highly-skilled professional who crumbles under pressure is a weakness that no CSIRT team can afford.
  • Organizational skills: In an emergency, the ability to organize the work, prioritize it and apply time management skills is one of the most important traits. Juggling between the actual technical response to the attack or vulnerability while informing stakeholders, documenting findings and actions, and keeping the rest of the organization's systems running, if possible, requires both types of skills to perform a certain job or task.
Education Requirement: A degree in Computer Science or Engineering or related field with a minimum of 1-2 years dedicated to IT, IT security, and/or security infrastructure experience OR a combination of equivalent work experience and education.Please contact Meera Makam at or email for any questions

Job Details

  • ID
    JC8105533
  • State
  • City
  • Job type
    Contract
  • Salary
    BASED ON EXPERIENCE
  • Hiring Company
    The Ascent Services Group
  • Date
    2021-01-11
  • Deadline
    2021-03-12
  • Category

Jocancy Online Job Portal by jobSearchi.