Beschreibung
Enterprise Firm seeks a Security Incident Response Consultant. The consultant will provide highly specialized technical knowledge in support of the security operations function.
Daily Responsibilities:
- Performs security threat/vulnerability management.
- Provides timely and adequate response to threats/alerts, including off-hour support.
- Executes established processes to correlate and assess security events.
- Coordinates security assessment/scanning activities, including communication and change control.
- Works on investigations and forensic analysis activity in support of Legal Compliance/Corporate Investigations.
- Serves as the primary liaison between Information Security and Legal ensuring efficient, secure data collection and evidence from various sources required for litigation or investigation; defines and maintains data collection processes and procedures, including comprehensive documentation; ensures data retention practices are intact to support litigation ediscovery demands.
- Maintains security event and discovery/detection tools.
- Participates in research and evaluation of security solutions.
- Develops security solutions using structured development methodology in accordance with corporate standards.
- Provides timely and sufficient response to security incidents and assessment services. Documents findings.
- Conducts technical or business analysis and resolves system/user problems in order to maintain efficient operations.
- Promotes security awareness.
- Works towards exceeding service levels and customer expectations.
- Assists in defining processes to carry out all security operations functions.
- Continuously works to improve the quality of information security services.
- Provides data for operational metrics and progress reports.
- Responds to security audits.
- Identifies areas of existing policies and procedures which require change or require new processes; ensures enhancements are made to documentation in a timely manner.
- Provides on-call support 24x7x365, as required/scheduled.
- Interfaces with other areas to support existing production systems and implement new and enhanced systems in accordance with company strategic architecture.
- Provides specialized expertise to support other information technology projects/activities.
- Identifies and resolves operational problems through final resolution.
JOB REQUIREMENTS
- At least 5-10 years experience in information security
- Bachelor's degree in computer science, specialized systems training, or equivalent work experience
- Experience in an operational and/or user support organization
- Experience/working knowledge of industry-recognized security tools including ISS IDS/IPS, Credent enterprise encryption solutions, Bit9 endpoint security, and Qualys.
- Strong, organizational, analytical, and interpersonal skills
- Ability to communicate complex technical concepts effectively both orally and in writing
- Ability to execute with a sense of urgency