Vacancy expired!
- Respond to incidents using the incident response cycle: Preparation, Detection/Identification, Containment, Eradication, Recovery and follow-up
- Manage Endpoint Detection and Response (EDR) solution
- Manage Deception Technology solution (Honey Pots)
- Network forensics using Splunk
- Analysis of artifacts collected during incident response effort
- Consistently review playbooks and improve as necessary
- Evaluate threats and threat intelligence sources and determine organization risk and improve threat detection
- Conduct host-based forensics and analysis to identify threat, root cause, impact, etc
- Communicate with various teams across the enterprise to perform initial triage and information gathering of security incident
- Perform basic malware analysis to identify basic IOCs and/or BIOCs
- Build and maintain sandbox environment to be able to safely investigate threats
- Deliver findings, recommendations and remediation steps for all activities
- Create reports and document incidents
- Bachelor's degree or equivalent work experience required
- Minimum of 3 years in Cybersecurity Incident Response field
- Strong interpersonal skills and excellent organizational skills
- Self-motivated, able to work in a team and independently
- Detail oriented, able to multitask and meet deadlines
- Advanced Splunk skillset
- Experience with Endpoint Detection and Response (EDR)
- Experience analyzing logs from critical network security appliances
- Basic Malware handling experience using Sandbox.
- Good communication and writing skills
- Experience working all types of Cybersecurity Incidents
- Deep understanding of all types of malware and threats
Vacancy expired!