We are looking for Cyber Security Incident Response Subject Matter Expert colleague to our multinational client.
The Cyber Defence team is tasked to enable centralized security log management (SIEM) across clients entities, the role holder will be part of the companys Cyber Defence Center and will take part of Security Operations activities.
This hands-on operational role supports real-time security event analysis to provide information security and assurance by leveraging SIEM technology and other security platforms.
Cyber Security Incident Response Expert also works closely with other internal IT and Business teams to provide oversight of emergency response to information security incidents to quickly identify, respond, and mitigate the risk from Information Security incidents that impact the company.
Responsibilities:
- Subject Matter Expert on various Cyber security platforms – collaborates actively with Advanced Investigations, Cyber Engineering and Group Cyber Security to ensure as Group Cyber Security roadmap is delivered
- Oversee the Cyber Defence protection configuration provides guidance for the whole Incident Response team
- Establish and deliver detection & incident response methods, tools and processes which provide the organization value by reducing risk & ensuring protection of company Groups critical assets
- Works as part of a multidisciplinary team in the delivery of information security and privacy response services to the global retail and commercial enterprise
- Provide support in relation to the other teams and functions as and when dictated by workloads and deadlines
- Provide general advice, guidance & direction on Information Security related matters as and when required for IT, Business and company users
- Provide guidance to the Incident Response team throughout the whole detection & triage steps with a special focus on enhancement options for the current detection & response toolkit
- Maintains excellent customer engagement and relationships, listening to voice of the customer and act as a communication interface between the incident management and crisis management functions, understanding technological trends and in depth understanding of information security and technical security controls
Requirements:
- University or college degree (Engineering)
- 5+ years experience in IT
- 2+ year experience in SOC
- Familiarity with incident response lifecycle
- Prior experience in an information security role
- Understanding of networking and packet analysis
- Good awareness of IT Support processes, such as ITIL
- Experience administering and/or analysing Linux, UNIX, Windows, and mobile operating systems
- Experience with Security Event Information Management (SIEM) and/or Intrusion Detection and Prevention System (IDPS) tools
Personal skills:
- Focused can-do positive attitude to deliver excellent service
- Structured thinking and analytical skills
- Strong communication skills, both written and verbal.
- Take responsibility for assigned tasks, take lead of unassigned tasks
- Must be a team player
- Able to deal with multiple issues and tasks under pressure
- Ability to quickly resolve issues
What We offer:
- Competitive remuneration package (bonus, fringe benefits)
- The chance to advance on the career ladder
- A responsible job with varied and challenging tasks
