Responsibilities:
• Monitor the evolving information security threat landscape
• Identify security gaps, vulnerabilities and weaknesses in systems, networks and applications
• Identify, analyze and prioritize specific external threats faced by the enterprise
• Collect, process and disseminate actionable threat intelligence to relevant internal teams
• Evaluate existing threat intelligence collection capabilities and propose/implement improvements
• Lead and coordinate all Incident Response activities
• Develop and maintain Incident Response plans, policies and procedures
• Compile and present incident reports
• Plan and conduct table-top and live-fire exercises
• Evaluate existing Incident Response tools/instrumentation and propose/implement improvements
• Participate in the ongoing evaluation of the firm’s overall cyber security tools and controls
• Research new security methodologies and technologies for potential adoption by the firm
• Contribute to risk assessment and risk management activities, including third-party assessments
• Assist in responding to clients’ inquiries into the firm’s security posture
• Lead and/or participate in security awareness and training initiatives
Qualifications:
• At least 5 years of broad Information Security experience
• Experience in threat intelligence collection and analysis
• Experience with SIEM tools and the workings of SOC
• Basic familiarity with digital forensics and evidence collection
• Close familiarity with the full life cycle of Incident Response
• Familiarity with common security frameworks and standards, including NIST Cybersecurity Framework, ISO/IEC 27001:27013, CIS CSC, PCI DSS
• Prior significant experience in at least one of the following:
o Application development
o Network engineering or operations
o System administration
• Excellent verbal and written communication skills
• Superior analytical abilities
• High degree of self-motivation and initiative
• Bachelor’s degree in a relevant field
Send resume to adelina@jobs-n-jobs.com
Comments