| Duties & Responsibilites : | It is mandatory for all the vendors to provide the details below while sharing the resume
Consultant Name:
Current Location:
Phone:
Email:
Work Authorization :
Rate:
Job Summary:
-The Security Incident Response Analyst is responsible for the daily operation of the incident response program, which includes conducting comprehensive incident response throughout the Organization computer network infrastructure.
-This individual is responsible for monitoring and evaluating data from sources of security event information in order to promptly identify, evaluate, and respond appropriately to information security incidents which impact the information infrastructure of the Organization.
-This individual may be called upon to mobilize and participate in incident handling on short notice during off-shift hours; drafting formal incident reports; contributing to the preparation of vulnerability reporting metrics, threat intelligence, and other analysis; interfacing with IT resources and other key stakeholders in order to facilitate coordinated security operations; assisting in security thought leadership activities which promote greater awareness of information security leading practices; other duties as required.
Job Responsibilities:
-Analyze and respond to security events within the enterprise to determine whether an incident has occurred and taking appropriate response actions.
-Execution and tracking of the incident response process.
-Creation of technically detailed reports on incidents to include attack vector, vulnerability exploited, remediation steps taken, and feedback on how to prevent future incidents.
-Lead follow up sessions to determine lessons learned and update procedures accordingly in regard to incident response.
-Conduct thorough digital forensic investigations to determine system misconduct and wrongdoing, in particular violations of company policy, government regulations, and US laws.
-Ensure all pertinent information is obtained to allow for the identification, containment, eradication, and recovery actions to occur in a time sensitive environment.
-Coordinate Compliance, Legal, Security, and Operational responses to potential information security incidents.
-Prepare comprehensive reports of investigation findings which could be used to support resulting litigation or disciplinary action in regard to forensics.
-Assist in maintaining Information Security policies and procedures related to the security incident response program.
-Provide general eDiscovery and litigation security support, consulting with legal and IT teams to establish processes for the identification, preservation, collection, analysis, processing, review, and presentation of eDiscovery data.
Job-Specific Requirements:
-Requires Bachelor’s degree in Computer Science, Business or a related field with an emphasis in Information Security or a Bachelor’s degree in an IT related field and 2-5 years of related experience
-Ability to conduct advanced packet analysis and is able to modify and add custom monitoring policies and signatures.
-Experience and understanding of adversarial tactics, techniques, and procedures.
-Experience with security technologies; such as IDS/IPS/SIEM integration methodologies and best/common practices, firewalls & log analysis, network behavior analysis tools, data loss prevention, antivirus, network packet analyzers, and malware and forensic analysis tools, data exfiltration, lateral movement, malware persistence, malware beaconing, and C2 communications.
-Possess SANS GSEC, GCIH, GCIA, GCFA, GPEN or equivalent certification.
-Working knowledge of Microsoft’s Active Directory is preferred.
-Working knowledge of Linux is preferred.
-Proficiency in Cyber Kill Chain framework and TAXII, STIX, and CybOX standards preferred.
-Proficiency in Python and other programming languages used for malware analysis and tool integration preferred.
-General knowledge of security requirements required by HIPAA, HITECH or other federal or state regulations is preferred.
-Customer focused and service oriented to ensure timely and accurate performance and benchmark achievement.
Success Factors:
Personal characteristics that would contribute to the incumbent’s ability to excel within this position are:
-Must demonstrate the ability to resolve conflict, work in a team setting, effectively problem solve, make appropriate decisions, communicate orally and in written form effectively and accomplish results.
-Must exhibit take charge attitude and assume ownership of assigned duties.
-Strong interpersonal skills with the ability to build strong relationships.
-Must have strong Business Writing skills. Highly effective organizational skills.
-Ability to convey high level information in a clear, easy to interpret format.
|
