Beschreibung
TätigkeitenbeschreibungFür unseren Kunden im Großraum Wuppertal suchen wir zum 01.12.2018 einen Security Incident Manager (m/w) für die voraussichtliche Dauer von 3 Monaten mit der Option einer Verlängerung.
Roles and Responsibilities
Lead and manage the CSIRT / SOC Team
Liaison between SOC Governance team/ Director and the SOC Operations team for Incident Response and Engineering
Review of SOC processes, controls, policies, and procedures proposed by the SOC Operations team
Provide management oversight for SOC operations of Incident Response and Engineering through the review aggregated SOC KPIs and KRIs
Manage and increase the effectiveness and efficiency of the SOC, through improvements of the SOC functions as well as coordination and communication between support and business functions
Provide inputs to long-term SOC strategy and planning, including improvements in people, process and technology for IR and Engineering
Escalation and management of Major / Critical incidents and coordination of all teams involved
Work closely with Threat Management, Forensics and Analytics team to create synergy in SOC operations
Handle feedback from Malware Analysis and Threat Intel / Hunting teams and incorporate in SOC
Ensure team members’ skills and training needs are assessed and are equip with required skills
Required Skills
Proficient in Incident Management and Response
Experience in security device management and SIEM technology
In-depth knowledge of security concepts such as cyber-attacks and techniques, threat vectors, risk management, incident management etc.
Experience in threat management
Knowledge of various operating system flavors including but not limited to Windows, Linux, Unix
Knowledge of applications, databases, middleware to address security threats against the same.
Proficient in preparation of Security reports, dashboards and documentation
Excellent communication and leadership skills
Experience in performing vendor management
Ability to handle high pressure situations with key stakeholders
Good Analytical skills, Problem solving and Interpersonal skills
Working knowledge and experience with MS office with proficiency in Excel
Skills and Competency
People-management skills
Technical and trouble-shooting ability in large IT environment spread across geographies
Knowledge of the Organization’s Crown Jewels applications, Users profiles and IT environment
Ability to interact with staff, peers and customers on a technical and professional level.
Experience in SOC operations and security analysis
Experience in risk and crisis management Ability to work in a high stress environment
Any two of the following Certifications
CEH
CISSP
GCIH
GSEC
PMP
Any other Certification in Information Security domain.