Cyber Security Incident Response Lead

Home / Georgia / Atlanta / Et cetera / Cyber Security Incident Response Lead

Cyber Security Incident Response Lead

01 Aug 2024
Georgia, Atlanta, 30301 Atlanta USA
Report job

Cyber Security Incident Response Lead

Vacancy expired!

Our client is looking for a Cyber Security Incident Response Lead on a full time basis.

As a Technical Lead of the cyber security team, you will assist in responding to security incidents in a mission critical production environment, such as investigating and remediating possible endpoint malware infections, mitigating threats such as unauthorized use, spam and phishing! You will own the development and delivery of our technical solutions related with security incident response, including building of processes, procedures, and methodology, as well as new response mechanisms. In addition, you will be responsible for developing processes and procedures to analyze various security events/incidents consistently. You will build, develop, and manage relationships with internal and external customers, and vendors to formulate remediation solutions for issues related with Information Security. You will ensure the appropriate response action are executed to deliver high quality information security processes, procedures and solutions to ensure the confidentiality and integrity of the assets!

Qualifications:

  • 8+ years of Information Security or related risk management experience
  • Bachelor’s degree in Information Security, Computer Science, Information Technology, related field or equivalent work experience
  • 3-5+ years of Hands on Information Security SOC/Incident Response experience with analyzing IOCs/Alerts as identified by SOC & Threat Intel teams
  • Demonstrated experience in handling security events in mission critical environments hands-on troubleshooting, analysis, and technical expertise to resolve incidents and service requests previous experience in troubleshooting day-to-day operational processes such as security monitoring, data correlation, security operations etc.
  • Good grasp of security incident response, such as different phases of response, vulnerabilities vs threats vs actors, Indicators of Compromise (IoCs), etc.
  • Strong knowledge of enterprise detection technologies and processes (Advanced Threat Detection Tools, IDS/IPS, Network Packet Analysis, Endpoint Protection)
  • Demonstrated experience with utilizing SIEM such as Splunk (preferred), ArcSight, QRadar, etc. in investigating security issues and / or complex operational issues on Windows and Unix
  • Advanced knowledge of network protocols and operating systems (Windows, Unix, Linux, Databases)
  • Responsible for managing security incidents identified from enterprise SIEM tool, threat intelligence, end user notifications, etc. to determine security risk and responding accordingly
  • Coordinate response, triage and escalation of security events affecting the company’s information assets and activities within the Incident Response team
  • Responsible for understanding the threat landscape by working with other Cyber functions such as Threat detection, Threat Intelligence, Digital Forensics etc. and in building & executing required action plan
  • Augment Incident response team to ensure 24/7 coverage and operations. Responsibilities sometimes will require working evenings and weekends, sometimes with little or no advanced notice

Position will be initially a remote role and post covid will have to relocate to the location

Relocation provided for this role.

If interested, please email me your word format resume along with your contact info.

Related jobs

Job Details

  • ID
    JC17605687
  • State
    Georgia
  • City
    Atlanta
  • Job type
    Permanent
  • Salary
    Depends on Experience
  • Hiring Company
    Wonese
  • Date
    2021-07-25
  • Deadline
    2021-09-23
  • Category
    Et cetera
  • Print

Jocancy Online Job Portal by jobSearchi.

Navigation
Vacancies
© Copyright 2024 jocancy.com. Developed by MicroPHP