Beschreibung
top itservices AG is a personnel service provider for the IT and engineering sectors. Since 1980 we have specialised in helping our clients find highly skilled experts and executing projects ourselves. As a medium-sized company, we are a professional partner for any business that requires IT and engineering services and are one of the top project providers and employers in these areas.TätigkeitbeschreibungThe SOC Specialist/ Incident Manager is the responsible person for the management of security incidents during all stages of the incident management process including an in-depth analysis. Therefore the SOC Specialist / Incident Manager will evaluate escalated security Alerts from the Senior SOC Analysts, assess the security and business risk associated with a security incident, coordinate containment, eradication, recovery, investigation and response measures and assure an appropriate tracking, documentation, closure and post incident reporting and review of incidents. The candidate will lead the communication during and after an incident (management reporting, communication with relevant stakeholders). In addition the SOC Specialist / Incident Manager will provide guidance and training for the SOC Analysts and Senior SOC Analysts, develop and maintain incident response plans and contribute to the enhancement of the incident detection, analysis and response capabilities of this Bank.Erforderliche Kenntnisse
7-10 years of security experience in a technical role, mainly in the area of Intrusion Detection Systems, Platform and/or Network security
Strong security background (understanding risk assessment, legal and regulatory requirements, threats, vulnerabilities, security policies etc.)
Excellent technical understanding of enterprise grade technologies including security devices, network engineering, operating systems, databases and applications and their security settings and configurations
Ability to read and understand system and network traffic data including security event logs, system logs, application logs, etc.
Demonstrate prior experience in scripting languages, software vulnerabilities, hacking techniques, exploits, malware, forensics and/or reverse engineering
Comprehensive knowledge of the threat landscape, adversary tactics, techniques, and procedures (TTP), general attack stages, kill-chain and attack types
Broad knowledge and proven experience in incident handling and incident response methodologies
Excellent knowledge of network security technology and various detection, analysis, troubleshooting and configuration control tools (e.g. SIEM, NIDS;DAM, Big Data Analytics, Log file and network traffic analysis, vulnerability scanner)
Excellent verbal and written communication skills (English language)
Strong analytical and problem-solving skills and conceptual knowledge
Experience of working in high performing teams and understand the dynamics of teamwork in a international SOC environment
Ability to maintain analytical, accurate, targeted and highly flexible working mode under pressure
Ability to take initiative and ownership of incidents from reporting to resolution
Leadership skills for motivation and developing other SOC roles, managing stakeholders and enhancing and optimizing SOC capabilities
Aptitude and authority for decision making, communication and execution
Certifications:
University degree in Computer Science or similar Relevant Security certifications (e.g. GCIH, GCIA, ECIH, CEH, OSCP, OSCE, GCFA, CSIH, CISSP) and technical certifications (e.g. CCNP, MSCE) are requiredBewerben
Are you interested in that offering - please send us your application for the Job-ID to Aleksandra Vujanovic
Referenznummer:
Kontaktperson: Thomas Dahlke
top itservices AG
Tel:
Fax:
Mail:
Web: http://www.top-itservices.com/