Your day to day:
- Lead incident response activities including scoping, communication, reporting, and long term remediation planning
- Collaborate with security teams and business stakeholders to implement countermeasures and improve defenses
- Applying SIEM/Big data to identify abnormal activity and extract meaningful insights. Research, develop, and enhance content within SIEM and other tools
- Work with engineering teams to design, test, and implement playbooks, orchestration workflows and automations. Research and test new technologies and platforms; develop recommendations and improvement plans
- Perform host-based analysis, artifact analysis, network packet analysis, and malware analysis in support of security investigations and incident response.
- Creating custom SIEM queries and dashboards to support the monitoring and detection of advanced TTPs.
Requirements: We are committed to building an outstanding, inclusive work environment and diverse teams representative of the patients and communities we serve.Requirements:
- Demonstrated ability in Incident Response / Computer Forensics / CSOC team /Threat Hunting or related fields. Experienced IT administration with broad and in-depth technical, analytical, and conceptual skills
- Experience in reporting to and communicating with senior level management (with and without IT background, with and without in-depth risk management background) on incident response topics.
- Proven experience to initiate and manage projects that will affect CSOC services and technologies
- Professional information security certification, such as CISSP, CISM or ISO 27001 auditor / practitioner is preferred. Professional (information system) risk or audit certification such as CIA, CISA or CRISC is preferred
- High level of English.
What do we offer to you:
- International company where you can gro faster.
- Professional development.
- Perm Contract + full remote.
- Interesting salary package.
- Social benefits.
If you want to know more about the position, apply now!