Expert Engineer - Incident Management

Key Responsibilities

JOB DESCRIPTION

• Perform technical cybersecurity investigation and triage of the reported cybersecurity incidents, preserve forensic evidence, analyze the indicators of compromise to identify the impact of the incident, and implement the required containment and mitigation actions.
• Identify and communicate cybersecurity risks during the incident response process.
• Collaborate with the concerned partners and teams, and track the incidents’ containment, remediation, and resolution.
• Coordinate with the concerned teams to automate event detection and incident response through technical solutions and security tools.
• Investigate recurring security incidents and conduct root cause analysis to identify causes of the incident and apply corrective actions to prevent future occurrences.
• Coordinate tabletop exercises and drills to test the effectiveness incident response process.
• Monitor the incident management metrics and reporting to identify areas for improvement.
• Maintain incident response playbooks and forensics documentation, compile, and submit incident reports, and create incident response procedures
• Technical skills in cyber security technologies, SIEM solutions, and Threat Intelligence tools
• Experience in Linux and Windows OS, Public and Private Cloud platforms, networking, and Internet protocols.
• Knowledge in Cyber Security policies and procedures, and security industry standards (ex: ISO 27001, PCI-DSS…).
• Minimum 5 years’ experience in Incident Response, and SOC operation with minimum 2 years in management role.
• Understanding of security technologies including SIEM, firewalls, EDR, SOAR, IDS/IPS, Network Monitoring, etc.
• Bachelor’s Degree in Cybersecurity, Computer Science or Engineering, Information Technology.
• Preferred cyber security certification (ex: Certified Incident Handler (GCIH), CISSP, CEH, CISM, Azure Security…etc.).
• Technical writing and reporting skills.
  
  

Additional Skills

• Cybersecurity investigation
• Cybersecurity incidents
• Forensic evidence
• Indicators of compromise
• Containment and mitigation actions
• Cybersecurity risks
• Incident corrective actions
• Tabletop exercises and drills
• Incident management metrics
• Incident response playbooks
  
  

Qualifications & Experience

Bachelors degree in Computer Science or related field with 5 to 8 years of experience.

Responsibilities

Key Responsibilities :

Qualifications

Qualifications & Experience :

Use your personal email id to register and apply for this role.

We thank all applicants for their interest, however only those shortlisted for an interview will be contacted. If you have not heard from us within two weeks of your application, please consider your application as unsuccessful.

At e& diversity is our strength and we are committed to creating an inclusive environment for all. We welcome and encourage all people to apply, regardless of gender, background, age and abilities. If you are a person of determination and require an adjustment or accommodation to the selection process, please send your request to DiversityEquity&[email protected]